New Visitor Cold Start
PassAudited by ClawScan on May 1, 2026.
Overview
This is a coherent instruction-only marketing skill with no code or credential use; the main thing to review is its planned use of visitor-behavior tracking and popups.
Safe to install from a security perspective as an instruction-only planning skill. Before using its recommendations in a real storefront, confirm that visitor tracking, cookies, popups, coupon targeting, and any email capture comply with your privacy, consent, and promotion rules.
Findings (1)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Implementing the recommendations may involve tracking anonymous visitor behavior and using it to personalize offers or popups.
The skill relies on collecting and using first-session behavioral context for personalization; the artifact also acknowledges consent, so this is disclosed and purpose-aligned but privacy-relevant.
Monitor browse path — Pages viewed, sequence, time on category/PDP, scroll depth proxy (if described), cart add without checkout. ... Compliance: new-customer definition, consent for popup/email.
Use clear notice and consent where required, collect only necessary events, keep cookies scoped and short-lived, provide easy dismissal, and avoid reusing visitor behavior outside this campaign.