Cross Border Ecommerce Skill
Security checks across malware telemetry and agentic risk
Overview
This appears to be an instruction-only e-commerce expansion advisor, with no code or required credentials, though users should notice the global install examples and business-sensitive information it asks them to provide.
This skill looks coherent for cross-border e-commerce planning and does not include code, required credentials, persistence, or automatic actions. Before installing, verify the external repository in the npx commands, especially the command for a different related skill, and avoid sharing credentials or unnecessary sensitive business records.
VirusTotal
VirusTotal findings are pending for this skill version.
Risk analysis
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Running the command could install or update skills in the user's global agent environment.
The skill documentation includes a user-directed global install command from an external repository. This is purpose-aligned setup documentation, but users should verify provenance before running global install commands.
npx skills add nexscope-ai/eCommerce-Skills --skill cross-border-ecommerce -g
Only run the install command if you trust the repository and intend to install this skill globally.
A user might install a separate skill in addition to the one being reviewed.
The visible SKILL.md includes a global install command for a different related skill. It appears to be a user-directed setup/linking example rather than automatic execution, but it could cause installation of additional agent capability if followed.
npx skills add nexscope-ai/eCommerce-Skills --skill ecommerce-growth-strategy -g
Confirm that any additional skill named in the documentation is desired and trusted before installing it.
The assistant may use sensitive business metrics and compliance details while producing recommendations.
The skill asks users to place business-sensitive operational and compliance details into the agent context. This is relevant to market expansion planning, but users should be mindful of what they disclose.
Monthly revenue: $___; Average order value (AOV): $___; Product cost / margin: ___%; ... trademark registered? VAT/GST numbers? International shipping account?
Share only the level of detail needed for the advice, and avoid providing passwords, API keys, tax-account logins, or full registration documents.