Ecommerce Pricing
PassAudited by ClawScan on May 14, 2026.
Overview
This instruction-only skill is mostly coherent for Apify-based ecommerce price monitoring, but users should carefully scope the Apify token, npm install, recurring schedules, and webhook exports.
Before installing, review the full skill text, use a limited Apify token, set spending and scheduling limits, pin npm dependencies, check marketplace scraping terms, and only configure webhook exports to trusted repricing systems with human review before price changes.
Findings (4)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Anyone running the examples with this token could consume Apify credits and access Apify resources available to that token.
The skill requires an Apify account token, giving the workflow authority to use the user's Apify account and compute credits. This is expected for the stated Apify integration, but it is sensitive access.
Go to Settings > Integrations and copy your Personal API Token ... export APIFY_TOKEN=apify_api_xxxxxxxxxxxxxxxx
Use a revocable, least-privilege Apify token where possible, avoid exposing it in logs, and set Apify usage limits or billing alerts.
The installed package versions may change over time, and users inherit normal npm supply-chain risk.
The skill instructs installation of npm dependencies without pinned versions or a lockfile. This is normal for a JavaScript Apify example, but it relies on current npm package provenance.
npm install apify-client axios
Install in an isolated project, pin versions, use a lockfile, and review package provenance before running scripts.
Automated runs may keep scraping and spending Apify compute credits until disabled.
The skill describes recurring automated monitoring. This is consistent with a price-monitoring tool, but it can continue consuming service resources after setup if not bounded.
Schedule automated daily or hourly price surveillance runs
Set explicit schedules, product limits, budgets, and disable or review recurring jobs when they are no longer needed.
Product lists, competitor pricing data, and generated recommendations could be sent to a third-party endpoint if configured.
The skill supports sending collected pricing data to another tool via webhook. This is purpose-aligned, but webhook destinations and data boundaries are not specified in the visible excerpt.
Export everything as CSV, JSON or direct webhook to your repricing tool
Only use trusted webhook URLs, require authentication where possible, filter exported data, and keep human approval before any downstream repricing action.