Amazon Fba Product Finder
Security checks across static analysis, malware telemetry, and agentic risk
Overview
This instruction-only Amazon FBA research skill appears purpose-aligned, with minor notes because it allows Bash use and saves research files locally.
Before installing, consider whether you are comfortable with a research skill that can use Bash and save FBA research under ~/fba-research/. The visible artifacts do not show credential use, network scraping, hidden code, or destructive behavior.
Static analysis
No static analysis findings were reported for this release.
VirusTotal
No VirusTotal findings for this skill version.
Risk analysis
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The agent may be able to run local shell commands while performing product research tasks.
Bash access gives the agent a broad local command capability. The visible skill purpose only needs calculations and local report saving, so this is worth noticing even though no unsafe command is shown.
allowed-tools: Bash
Use the skill when you are comfortable with local command access, and review any proposed shell actions before allowing them.
Product ideas, supplier notes, and research decisions may remain stored on the local machine after use.
The skill discloses persistent local storage for research reports and supplier notes, which may include sensitive business ideas or sourcing information.
Creates `~/fba-research/` containing: `opportunities/`, `rejected/`, `pipeline/`, `sourcing/`
Avoid saving confidential sourcing or business strategy details unless local storage is acceptable, and periodically review or delete saved reports.