idea to product mvp
ReviewAudited by ClawScan on May 10, 2026.
Overview
The skill mostly matches its product-research purpose, but it stores user/profile and account-session data persistently, uses stealth browser automation, disables TLS checks in one search script, and can install an unpinned external browser skill.
Install only if you are comfortable with persistent local profiling and account/session storage. Before using it, add .skills-data/ to .gitignore, review or disable the Xiaohongshu Playwright workflow, avoid saving sensitive credentials unless needed, require approval before installing agent-browser, and periodically inspect or delete the stored profile, cache, and .env files.
Findings (5)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Personal or business-context details could be stored and reused in later sessions without the user realizing, and stale or incorrect profile data could influence future recommendations.
The skill instructs the agent to persistently record user background, preferences, resources, and decision style without per-update consent, then reuse that profile across stages.
每当从对话中捕捉到新的用户背景信息,及时追加更新(不需要征求用户同意)
Ask before creating or updating the profile, show users what was saved, and provide clear edit/delete controls for .skills-data/idea2mvp/data/user-profile.md.
A local cache may retain access to the user's Xiaohongshu session; anyone or anything with local access to that project data could potentially reuse or inspect that browser state.
The Xiaohongshu search script uses a persistent browser profile and checks for a web_session cookie, meaning the user's logged-in account session can be stored and reused from the skill cache.
launch_persistent_context(user_data_dir=BROWSER_DATA_DIR, headless=False, ...); cookies = await page.context.cookies(); has_session = any(c["name"] == "web_session" ...)
Make account-session persistence opt-in, clearly document how to log out and delete .skills-data/idea2mvp/cache/xhs_browser_data, and declare this credential/session use in metadata.
Using stealth automation with a real account can create platform-policy or account-locking risk, and the user may not understand that the script is trying to evade automation detection.
The browser automation explicitly hides automation indicators and simulates human browsing behavior, which is not disclosed in the top-level skill description.
Object.defineProperty(navigator, 'webdriver', { get: () => undefined }); ... --disable-blink-features=AutomationControlledRemove stealth/anti-detection behavior or require explicit user approval before using it; prefer documented APIs or normal browser automation that respects the target site's terms.
Search results could be intercepted or altered on the network, which may mislead the agent's market research or expose browsing queries.
The WeChat/Sogou search script disables TLS certificate and hostname verification for HTTPS requests.
_ssl_ctx.check_hostname = False; _ssl_ctx.verify_mode = ssl.CERT_NONE
Keep certificate verification enabled by default and only allow an explicit, user-approved insecure mode for troubleshooting.
Installing an unpinned external skill can add new code and permissions to the user's agent environment beyond what this skill's registry metadata describes.
The skill tells the agent to install another skill from a GitHub URL at runtime, without a pinned commit, checksum, or declared install specification.
如未安装,先执行:`npx skills add https://github.com/vercel-labs/agent-browser --skill agent-browser`
Require explicit user approval before installing external skills, pin the dependency to a reviewed version or commit, and declare it in install requirements.