Amazon Competitor Analysis

Security checks across malware telemetry and agentic risk

Overview

This is a simple Amazon competitor-analysis prompt skill that asks the agent to research public marketplace data and does not add hidden code, credentials, persistence, or destructive behavior.

Before installing, understand that the skill may be invoked for fairly broad competitor or pricing questions; use it for Amazon marketplace analysis and verify any generated pricing, advertising, or market-share estimates because the skill itself says these may rely on point-in-time public research rather than live monitored data.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 85% confidence
Finding: The skill description uses very broad activation phrases such as competitor analysis, competitive research, pricing analysis, and how to beat competitors on Amazon. This increases the chance the skill is invoked for generic business-analysis requests outside its intended scope, which can cause over-collection of user context, unintended routing, or execution in situations where a narrower skill should handle the request.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal