v1.0.0

Product Description Generator

ReviewClawScan verdict for this skill. Analyzed May 1, 2026, 5:20 AM.

Analysis

This is mostly a local product-copy generator, but review it because bulk CSV filenames can escape the chosen output folder and some generated marketing claims may be unverified.

GuidanceBefore installing, be careful with bulk CSV files: use trusted CSVs, avoid product names containing slashes or '..', and run the tool in a directory where unintended Markdown file writes would not matter. Also review generated copy for accuracy before publishing, especially claims about free shipping, customer counts, scarcity, or social proof.

Findings (3)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Tool Misuse and Exploitation

SeverityMediumConfidenceHighStatusConcern

scripts/bulk_generate.py

filename = f"{row['product'].lower().replace(' ', '_')}.md"
output_path = os.path.join(output_dir, filename)

with open(output_path, "w", encoding="utf-8") as f:

The product name comes from the CSV and is used to build the output filename without rejecting path separators, absolute paths, or '..' segments, so a malformed CSV row could write a .md file outside the intended output directory.

User impactA malicious or badly formatted product CSV could create or overwrite Markdown files outside the chosen descriptions folder.

RecommendationSanitize product names into safe slugs, reject absolute paths and '..' segments, resolve the final path, ensure it stays under the output directory, and prompt before overwriting files.

Human-Agent Trust Exploitation

SeverityLowConfidenceHighStatusNote

scripts/generate_description.py

meta_desc = f"{product}. {', '.join(benefits[:2])}. Order now for free shipping."
...
md += f"{tone_data['cta']} Join thousands of satisfied customers who have already upgraded their experience.\n\n"

The script inserts claims such as free shipping and thousands of satisfied customers without requiring evidence that those claims are true.

User impactIf published without review, the generated listing could contain inaccurate marketing claims or marketplace-policy issues.

RecommendationReview generated descriptions before publishing and replace hardcoded social-proof, shipping, urgency, or scarcity claims with verified facts.

Agentic Supply Chain Vulnerabilities

SeverityLowConfidenceHighStatusNote

SKILL.md

### `generate_variations.py`
Generate A/B testing variations of a description.
...
### `seo_analyzer.py`
Analyze SEO score of product description.

SKILL.md documents helper scripts that are not present in the provided file manifest or file contents, so the package documentation overstates the included runnable tools.

User impactSome documented commands may fail, and users might be tempted to fetch missing helpers from unreviewed sources.

RecommendationUse only the included scripts unless the publisher provides the missing files through the same reviewed package.