ClawHub
Back to skill
v1.2.0

Miaoji Bid Guard

BenignClawScan verdict for this skill. Analyzed May 1, 2026, 4:43 PM.

Analysis

This is an instruction-only Amazon ads advisor with no code or credential access, but its bid and budget recommendations should be reviewed before applying.

GuidanceThis skill appears safe to install as an instruction-only advisor. Before using its recommendations, confirm your own Amazon Ads data and apply any bid, budget, or pause changes manually and deliberately.

Findings (2)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Tool Misuse and Exploitation
SeverityLowConfidenceHighStatusNote
SKILL.md
建议操作:
  - 第一步:降价至当前出价的50%
  - 第二步:观察3天
  - 第三步:如仍超标,建议暂停该词

The skill recommends concrete campaign-impacting actions such as cutting bids or pausing keywords. This is aligned with the stated advisory purpose and there is no tool or credential access, but the actions can affect ad spend and visibility if applied blindly.

User impactIf a user or another connected automation applies these recommendations without checking the underlying data, it could reduce ad delivery or change campaign economics.
RecommendationTreat outputs as advisory. Verify ACoS, conversion rate, order volume, and campaign scope before implementing changes, and require explicit user approval before any connected tool changes Amazon Ads settings.
Agentic Supply Chain Vulnerabilities
SeverityInfoConfidenceMediumStatusNote
metadata
Source: unknown
Homepage: none
Version: 1.2.0

The registry metadata has limited provenance, while the included clawhub.yaml lists different package details such as version 1.0.0 and a homepage. Because this is instruction-only and contains no executable install path, this is a low-impact verification note rather than a behavioral concern.

User impactIt may be harder to confirm the exact release lineage or publisher source before installation.
RecommendationVerify the owner and intended version before installing; the publisher should align registry metadata and package metadata.