AliMerce 商城助手

This skill is not clearly malicious, but it exposes high-impact AliMerce store administration tools and an API-token path that are under-described in the user-facing metadata.

Install only if you intend to give this skill access to an AliMerce backend. Use a least-privilege API token, verify ALIMERCE_API_URL points to your intended server, and require human approval or logging for product, user, order, and customer-preference changes.