Product Page SEO
v1.0.0Optimize e-commerce product pages for search engine visibility. On-page SEO, structured data, page speed, mobile optimization, and content strategy for Googl...
⭐ 1· 89·0 current·0 all-time
bynexscope-ai@nexscope
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Benign
medium confidencePurpose & Capability
The name, description, and listed capabilities (on-page SEO, structured data, speed, mobile, content) align with the SKILL.md. The skill is instruction-only and appears intended to produce recommendations and audits rather than to perform automated changes, which is coherent with the absence of required credentials or binaries.
Instruction Scope
The SKILL.md instructs the agent to 'collect information' from the user, ask one follow-up, then 'research and analyze' and deliver recommendations. That scope is reasonable for an audit-style skill, but 'research' implies the agent may fetch external pages or use web searches — the instructions do not request or require platform admin credentials, analytics access, or file reads. The only operational instruction that could expand scope is the suggested 'Install' command (npx ... --skill product-page-seo -g) shown in the document; that is a user-facing installation suggestion and not a registry install spec, but following it would pull external code.
Install Mechanism
The registry lists no install spec and there are no code files, so runtime risk is low. However, the SKILL.md includes an 'Install' line that recommends running an npx command to add a third-party npm package (nexscope-ai/eCommerce-Skills) globally. If a user follows that instruction, they will download and execute code from the npm registry; the registry entry here does not vet or pin that package. This is a user-actionable instruction (not an automated install by the platform) but worth reviewing before running.
Credentials
No environment variables, credentials, or config paths are requested by the skill. For an advice/audit skill that operates from a product URL and user answers, this is proportional. Note: some platform-specific automated fixes would normally require credentials (not requested here).
Persistence & Privilege
The skill does not request always:true, does not declare any elevated persistence, and has no install-time hooks in the registry metadata. It is user-invocable and allows model invocation (the platform default) which is expected for skills of this type.
Assessment
This skill is an instruction-only SEO advisor and appears to be what it claims: a recommendation/audit tool for product pages. Before installing or following the SKILL.md's npx install line, review the referenced npm package (nexscope-ai/eCommerce-Skills) and its source on GitHub to ensure you trust it — installing packages globally can run arbitrary code. The skill itself does not request credentials; don't provide store admin or analytics credentials unless you explicitly want automated changes and you've verified the package/source. If you only want recommendations, you can use the skill without installing anything and paste product URLs or relevant screenshots instead. If you need higher assurance, ask the publisher for the source repository and inspect it (or request a copy of the package) before running the npx command.Like a lobster shell, security has layers — review code before you run it.
latestvk97fzgw1effbt50wwys2vcqqex83npa8
License
MIT-0
Free to use, modify, and redistribute. No attribution required.