v1.0.0

Amazon Competitor Analysis

BenignClawScan verdict for this skill. Analyzed May 1, 2026, 8:10 AM.

Analysis

This is an instruction-only Amazon competitor analysis skill with no code, credentials, or persistence, though its README-style install command points to an external global install path users should verify.

GuidanceThis skill appears safe as prompt guidance for competitor research. Before running the README install command, verify the external repository/package, and avoid sharing confidential business data unless you trust the environment where the analysis will run.

Findings (1)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Agentic Supply Chain Vulnerabilities

SeverityLowConfidenceHighStatusNote

SKILL.md

npx skills add nexscope-ai/eCommerce-Skills --skill amazon-competitor-analysis -g

The skill documentation includes a user-directed command that installs from an external repository and uses a global install flag, while the reviewed artifact set contains only SKILL.md and no install spec.

User impactIf a user copies this command, they may install content from outside the reviewed registry artifact.

RecommendationUse the registry-provided install flow when possible, or inspect and trust the referenced GitHub repository and npx package before running the command.