Amazon Price Tracker

Security checks across malware telemetry and agentic risk

Overview

This is a Markdown-only Amazon pricing guidance skill with disclosed scope and no hidden code, credentials, persistence, or automatic price-changing capability.

Before installing, understand that this skill may produce business pricing recommendations for Amazon sellers. Treat any dynamic pricing, Buy Box, or competitive response suggestions as advisory only: review margin floors, marketplace rules, and rollback plans before applying them in any real pricing system.

SkillSpector

By NVIDIA

Vulnerability Patterns

Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access

Findings (2)

Vague Triggers

Medium

Confidence: 88% confidence
Finding: The top-level description is broad enough to match generic pricing or competitor-pricing requests, not just Amazon-specific use cases. That can cause the skill to be invoked in contexts where its assumptions, output format, and recommendations are inappropriate, increasing the risk of misleading business advice or unintended pricing actions.

Missing User Warnings

Medium

Confidence: 91% confidence
Finding: The skill strongly encourages dynamic pricing, automated competitive response, and Buy Box optimization, but does not warn users that these recommendations can directly affect prices, margins, revenue, and marketplace compliance. In a pricing automation context, omission of such warnings increases the chance that users apply risky changes without review or safeguards.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal