ClawHub

Amazon Return Reduction

v1.0.0

Return rate reduction — root cause analysis, listing accuracy, packaging improvements, size guides

0· 91·0 current·0 all-time
bynexscope-ai@nexscope
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Pending
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
The name, description, and SKILL.md are consistent: the skill is an advisory assistant for reducing Amazon return rates and asks for product/context info from the user. One minor inconsistency: the SKILL.md provides an 'Install' npx command (npx skills add nexscope/amazon-return-reduction) that implies an npm-distributed package, but the registry metadata for this skill shows no install spec or code files—this is likely just a user-facing convenience note rather than required behavior, but you should verify the package/source before running npx.
Instruction Scope
The runtime instructions only ask the agent to collect product/platform/context from the user, ask a single follow-up, analyze, and produce structured recommendations. The instructions do not request reading local files, environment variables, or external endpoints beyond normal research and analysis, so scope is limited to the stated advisory purpose.
Install Mechanism
There is no install spec in the registry bundle and no code files (instruction-only), which is low-risk. However, SKILL.md's Install section references an npx command; if you intend to run that command, treat it as a separate action: verify the npm package and its source first because the registry bundle does not include code to inspect.
Credentials
The skill declares no required environment variables, no credentials, and no config paths. That aligns with an advisory/consulting skill that operates only on user-provided descriptions and anonymized data.
Persistence & Privilege
The skill does not request always:true or any elevated persistence. It is user-invocable and allows autonomous model invocation by default (the platform normal), which is appropriate for a helper skill of this kind.
Assessment
This skill appears coherent and low-risk as delivered (instruction-only, no credentials or installs required by the bundle). Before installing or running any external commands mentioned in the README: 1) verify the publisher (Nexscope) and the linked GitHub repos to ensure they match the package you intend to use; 2) do not share account credentials (Amazon seller credentials, AWS keys, or other secrets) with the skill—provide only anonymized or sample data unless you explicitly trust the provider and understand the data handling; 3) if you plan to run the npx command, inspect the npm package and its source code (or the repo) first and confirm npm ownership and recent activity; 4) watch for any follow-ups from the agent that request uploading CSVs, logs, or account access—prefer aggregated or redacted samples; 5) if the skill later includes an install spec, binaries, or requests additional environment variables, re-evaluate for proportionality. If you want, I can check the referenced GitHub links or search npm for the referenced package to confirm they exist and appear legitimate.

Like a lobster shell, security has layers — review code before you run it.

latestvk971hadnhnrts3vd92spay1zp584gs35

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments