技能 amazon-competitor-analyzer 審計紀錄
📦

審計紀錄

amazon-competitor-analyzer - 3 審計

審計版本 3

最新 中風險

Jun 28, 2026, 05:28 PM

Static analysis correctly identified network access, environment variable use, and filesystem writes, but the reviewed intent is a BrowserAct API client that writes local reports. No prompt injection, hidden command execution, credential exfiltration, or confirmed malicious behavior was found, but publication should warn users about third-party API-key handling and local file output.

2
已掃描檔案
496
分析行數
11
發現
codex
審計單位
中風險問題 (2)
amazon_competitor_analyzer.py:43amazon_competitor_analyzer.py:53amazon_competitor_analyzer.py:56amazon_competitor_analyzer.py:83-88amazon_competitor_analyzer.py:108-112amazon_competitor_analyzer.py:132-136
Third-Party API Key and Product Data Transmission
TRUE POSITIVE: The skill reads BROWSERACT_API_KEY from the environment or CLI and sends requests with an Authorization header to the BrowserAct API. This is expected for the skill, but users must trust BrowserAct with API credentials and submitted ASIN workflow data.
amazon_competitor_analyzer.py:219amazon_competitor_analyzer.py:251amazon_competitor_analyzer.py:311amazon_competitor_analyzer.py:328amazon_competitor_analyzer.py:357
Local Report Writes to User-Selected Output Directory
TRUE POSITIVE: The script creates an output directory and writes CSV, Markdown, and JSON reports. This is normal report generation, but a user-supplied output path can overwrite files named amazon_analysis in the selected directory.
低風險問題 (4)
amazon_competitor_analyzer.py:21amazon_competitor_analyzer.py:23amazon_competitor_analyzer.py:28amazon_competitor_analyzer.py:30amazon_competitor_analyzer.py:32amazon_competitor_analyzer.py:39SKILL.md:49-54SKILL.md:110-114
Environment File Loading Is Documented Credential Configuration
TRUE POSITIVE WITH LOW IMPACT: The code loads a local .env file and reads BROWSERACT_API_KEY. This stores and uses a secret, but the behavior is documented and limited to the skill directory and environment configuration.
SKILL.md:49-54SKILL.md:58-60SKILL.md:66-80SKILL.md:101-108
Markdown Shell Commands Are Usage Examples
FALSE POSITIVE: The external command findings are fenced documentation examples for copying .env, exporting a variable, installing packages, and running the Python script. They are not executed by SKILL.md itself.
amazon_competitor_analyzer.py:342SKILL.md:3SKILL.md:32SKILL.md:90SKILL.md:112SKILL.md:118SKILL.md:121
Weak Cryptography and Reconnaissance Findings Are False Positives
FALSE POSITIVE: The weak cryptography and reconnaissance alerts appear to match words in documentation, argparse text, Markdown headings, or status handling. No hashing, encryption, system inventory, or host reconnaissance code was found.
amazon_competitor_analyzer.py:43amazon_competitor_analyzer.py:83amazon_competitor_analyzer.py:219SKILL.md:66
Dangerous Combination Heuristic Not Confirmed
FALSE POSITIVE: The skill combines network calls, credential configuration, and file output, but these capabilities serve the advertised BrowserAct analysis workflow. No evidence found of hidden code execution, obfuscation, prompt injection, or credential theft.

風險因素

⚡ 包含腳本 (2)
amazon_competitor_analyzer.py:366-367 SKILL.md:66-80
🌐 網路存取 (7)
amazon_competitor_analyzer.py:45 amazon_competitor_analyzer.py:83-88 amazon_competitor_analyzer.py:108-112 amazon_competitor_analyzer.py:132-136 SKILL.md:42 SKILL.md:44 SKILL.md:114
📁 檔案系統存取 (5)
amazon_competitor_analyzer.py:219 amazon_competitor_analyzer.py:251 amazon_competitor_analyzer.py:311 amazon_competitor_analyzer.py:328 amazon_competitor_analyzer.py:357
🔑 環境變數 (17)
amazon_competitor_analyzer.py:21 amazon_competitor_analyzer.py:23 amazon_competitor_analyzer.py:28 amazon_competitor_analyzer.py:30 amazon_competitor_analyzer.py:32 amazon_competitor_analyzer.py:39 amazon_competitor_analyzer.py:43 amazon_competitor_analyzer.py:53 amazon_competitor_analyzer.py:56 amazon_competitor_analyzer.py:350 amazon_competitor_analyzer.py:351 SKILL.md:4 SKILL.md:53 SKILL.md:59 SKILL.md:107 SKILL.md:114 SKILL.md:118
⚙️ 外部命令 (4)
SKILL.md:49-54 SKILL.md:58-60 SKILL.md:66-80 SKILL.md:101-108

審計版本 2

中風險

May 21, 2026, 08:17 AM

This skill scrapes Amazon product data via the BrowserAct API and generates competitive analysis reports. The static scanner found 86 potential issues including network access, environment variable reading, filesystem writes, and shell command patterns. After AI evaluation: network calls go to a single hardcoded BrowserAct API endpoint (no exfiltration), env access follows standard API key patterns, filesystem writes are legitimate report output, and shell commands in SKILL.md are documentation-only (markdown code blocks, not executed). The skill combines multiple high-risk capabilities (network + credentials + filesystem) which requires attention, but the code is transparent with no obfuscation or malicious intent detected.

3
已掃描檔案
502
分析行數
9
發現
claude
審計單位
中風險問題 (3)
amazon_competitor_analyzer.py:34-39
Manual Environment File Parsing without Validation
When python-dotenv is unavailable, the script manually parses .env files line-by-line (lines 34-39). This pattern reads credential data without input validation or error handling for malformed entries, and exposes the file path in error messages.
amazon_competitor_analyzer.py:344-345
API Key Exposure via Command-Line Argument
The script accepts an API key via the -k command-line flag (line 345). CLI arguments are visible in process listings and shell history, which can expose credentials to other users on shared systems.
amazon_competitor_analyzer.py:1-368
Heuristic Dangerous Capability Combination
The skill combines network access, credential access, filesystem write operations, and code execution capabilities. While the current implementation is transparent and legitimate, this capability combination could be misused if the code were modified.
低風險問題 (3)
amazon_competitor_analyzer.py:83amazon_competitor_analyzer.py:108amazon_competitor_analyzer.py:132
Network Requests to External API
The script makes HTTP requests to api.browseract.com using the requests library. All URLs are hardcoded with no dynamic URL construction, reducing risk of SSRF or redirection attacks.
amazon_competitor_analyzer.py:219amazon_competitor_analyzer.py:251amazon_competitor_analyzer.py:311
Filesystem Write Operations for Report Output
The script writes CSV, Markdown, and JSON reports to the local filesystem using open() and os.makedirs(). Output path is user-controlled via the -o flag.
SKILL.md:49-108
External Command Patterns in Documentation Only
The SKILL.md file contains shell command examples in markdown code blocks. The static analyzer detected 16 instances of backtick execution patterns, but these are documentation examples (bash commands with cp, export, pip, python) and are not executed by the skill.

風險因素

🌐 網路存取 (8)
.env.example:3 amazon_competitor_analyzer.py:83 amazon_competitor_analyzer.py:108 amazon_competitor_analyzer.py:132 amazon_competitor_analyzer.py:45 SKILL.md:42 SKILL.md:44 SKILL.md:114
🔑 環境變數 (18)
.env.example:5 amazon_competitor_analyzer.py:39 amazon_competitor_analyzer.py:43 amazon_competitor_analyzer.py:21 amazon_competitor_analyzer.py:23 amazon_competitor_analyzer.py:28 amazon_competitor_analyzer.py:30 amazon_competitor_analyzer.py:51 amazon_competitor_analyzer.py:53 amazon_competitor_analyzer.py:56 amazon_competitor_analyzer.py:350 amazon_competitor_analyzer.py:351 SKILL.md:107 SKILL.md:4 SKILL.md:53 SKILL.md:59 SKILL.md:114 SKILL.md:118
📁 檔案系統存取 (5)
amazon_competitor_analyzer.py:219 amazon_competitor_analyzer.py:251 amazon_competitor_analyzer.py:311 amazon_competitor_analyzer.py:328 amazon_competitor_analyzer.py:357

偵測到的模式

Potential Prompt Injection - Metadata EmbeddingStandard CLI Argument Parser Misidentified as Cryptographic Function

審計版本 1

低風險

Apr 28, 2026, 09:16 AM

Evaluated 86 static findings across 3 files. All findings are legitimate API client patterns, not security vulnerabilities. The skill uses standard environment variable configuration for BrowserAct API credentials, makes outbound network requests to the legitimate BrowserAct service, and writes analysis reports to user-specified directories. The static scanner flagged standard practices (dotenv loading, requests library usage, argparse CLI parsing) as suspicious. No malicious intent or actual vulnerabilities confirmed after code review.

3
已掃描檔案
502
分析行數
5
發現
claude
審計單位
低風險問題 (3)
amazon_competitor_analyzer.py:21-39.env.example:5
Standard Environment Variable Configuration
Code uses os.getenv() and python-dotenv to read API credentials from environment. This is standard practice for API client configuration. The .env.example file contains only placeholder text (YOUR_API_KEY_HERE), not actual secrets.
amazon_competitor_analyzer.py:83-88amazon_competitor_analyzer.py:108-112amazon_competitor_analyzer.py:132-136
Network Requests to BrowserAct API
Uses requests library to call api.browseract.com - the legitimate API service for browser automation. This is the intended functionality of the skill.
amazon_competitor_analyzer.py:219-246amazon_competitor_analyzer.py:251-300amazon_competitor_analyzer.py:311-313
File Write Operations for Report Generation
Writes CSV, Markdown, and JSON files to user-specified output directories. This is the legitimate feature of saving analysis results.

風險因素

🌐 網路存取 (3)
amazon_competitor_analyzer.py:83-88 amazon_competitor_analyzer.py:108-112 amazon_competitor_analyzer.py:132-136
📁 檔案系統存取 (3)
amazon_competitor_analyzer.py:219 amazon_competitor_analyzer.py:251 amazon_competitor_analyzer.py:311

偵測到的模式

Argparse Misidentified as Cryptographic AlgorithmDocumentation Command Examples Misidentified
← 回到技能