Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Amazon Ads Reporter
v1.1.0Fetch Amazon Ads Sponsored Products campaign reports asynchronously by requesting and polling separately to avoid API timeouts, with no npm dependencies.
⭐ 0· 265·2 current·2 all-time
byZero2Ai@zero2ai-hub
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
Name/description align with the two included scripts (keyword-report.js and get-bids.js). However SKILL.md documents additional scripts (request-report.js, poll-report.js, get-report.js) and output files (~/.openclaw/workspace/tmp/amazon-report-*.json) that are not present in the package; region selection described in the README is not honored (both scripts hardcode the EU advertising API endpoint). These mismatches mean the skill package is incomplete or inconsistently documented.
Instruction Scope
Instructions tell the agent to run scripts that are missing and to write/read specific workspace files that the provided scripts do not create. Both scripts read credentials from a local JSON file (AMAZON_ADS_PATH or default in home). That credential access is expected for this purpose, but the SKILL.md and code disagree on how reports are requested/polled and where artifacts are stored — the agent would likely error or behave differently than documented.
Install Mechanism
No install spec (instruction-only plus two code files). No downloads or external installers are present, which lowers installation risk. The scripts use only Node built-ins and make HTTPS calls.
Credentials
The code reads sensitive local credentials from amazon-ads-api.json (refresh token, client id/secret, profileId) and get-bids.js expects CAMPAIGN_IDS in env. The registry metadata declares no required env vars or primary credential, which is inconsistent with the scripts and SKILL.md. Requesting a refresh token and client secret is appropriate for the advertised purpose, but the missing metadata and plaintext local credential requirement should be noted and validated.
Persistence & Privilege
always:false and user-invocable:true (defaults). The skill does not request persistent system-wide privileges or modify other skills' configs. It runs as ad-hoc Node scripts and does not install background services.
What to consider before installing
This package mostly does what it says (fetch reports, list bids) but it is inconsistent and incomplete. Before using it: 1) Do not run with real credentials until you verify the missing scripts — SKILL.md references request-report.js, poll-report.js, and get-report.js but only keyword-report.js and get-bids.js are included. 2) Inspect or obtain the missing scripts from a trusted source or ask the author for a complete release. 3) Store credentials carefully: amazon-ads-api.json contains a refresh token and client secret in plaintext — keep it readable only by you and consider using a short-lived profile or limited-scope account. 4) Confirm CAMPAIGN_IDS is set when running get-bids.js and that your Node runtime provides global fetch (or run on a Node version that supports it) or adjust the script. 5) Note that both scripts call Amazon endpoints and do not contact any other external servers — if you see network calls to non-Amazon domains, do not proceed. 6) Because the package metadata didn't declare required env vars, treat the skill as incomplete and verify behavior in a safe/test environment; rotate secrets if you accidentally exposed them during testing.scripts/keyword-report.js:9
Environment variable access combined with network send.
scripts/keyword-report.js:12
File read combined with network send (possible exfiltration).
Patterns worth reviewing
These patterns may indicate risky behavior. Check the VirusTotal and OpenClaw results above for context-aware analysis before installing.Like a lobster shell, security has layers — review code before you run it.
latestvk973kycmdpy6bbhd2ggkf8wdq583sy4d
License
MIT-0
Free to use, modify, and redistribute. No attribution required.