技能 amazon-listing-competitor-analysis-skill 審計紀錄
📦

審計紀錄

amazon-listing-competitor-analysis-skill - 3 審計

審計版本 3

最新 中風險

Jun 28, 2026, 05:31 PM

Static analysis correctly identified network access, environment variable access, and an agent-invoked Python script. Review found no prompt injection, obfuscation, malicious exfiltration, or real weak cryptography, but the skill sends a BrowserAct API key and listing inputs to a third-party API.

2
已掃描檔案
329
分析行數
10
發現
codex
審計單位
中風險問題 (2)
scripts/amazon_listing_competitor_analysis.py:15scripts/amazon_listing_competitor_analysis.py:23scripts/amazon_listing_competitor_analysis.py:35-37scripts/amazon_listing_competitor_analysis.py:112-118
Third-Party API Access With Environment API Key
TRUE_POSITIVE: The script reads BROWSERACT_API_KEY and sends it as a Bearer token to https://api.browseract.com. This is intended for BrowserAct, but it exposes a secret to a third-party service and requires user trust.
scripts/amazon_listing_competitor_analysis.py:27-28scripts/amazon_listing_competitor_analysis.py:35-37scripts/amazon_listing_competitor_analysis.py:62-64scripts/amazon_listing_competitor_analysis.py:90-92
External Listing Data Processing
TRUE_POSITIVE: The script sends the ASIN and marketplace URL to BrowserAct and polls external task endpoints. This is core functionality, but users should know listing inputs and task results leave the local environment.
低風險問題 (4)
SKILL.md:42-44scripts/amazon_listing_competitor_analysis.py:121-124
Agent-Invoked Python Script
TRUE_POSITIVE: The skill instructs the agent to run a Python script with an ASIN and optional marketplace URL. The example quotes arguments and the script does not execute shell commands internally, limiting command injection risk.
SKILL.md:20SKILL.md:28-36SKILL.md:42-44SKILL.md:57-60SKILL.md:145-201
Markdown Backticks Misclassified as Shell Execution
FALSE_POSITIVE: Static detections in SKILL.md mostly refer to markdown inline code, example command formatting, and output template text. No evidence found that these backticks execute code.
SKILL.md:3SKILL.md:29-35SKILL.md:58SKILL.md:79SKILL.md:108SKILL.md:152-164
Weak Cryptography Detections Are Text Matches
FALSE_POSITIVE: The reported SKILL.md lines contain prose, parameter names, or output-template text. No evidence found of cryptographic functions, hashing, ciphers, or security-sensitive algorithms.
scripts/amazon_listing_competitor_analysis.py:43-53SKILL.md:13-17SKILL.md:67-72SKILL.md:92SKILL.md:143
System Reconnaissance Detections Are Benign Status Handling
FALSE_POSITIVE: The reported lines handle API errors, status polling, and skill feature descriptions. No evidence found of host reconnaissance, system probing, or local environment enumeration beyond checking one required API key.

風險因素

⚡ 包含腳本 (1)
scripts/amazon_listing_competitor_analysis.py:1-126
🌐 網路存取 (6)
scripts/amazon_listing_competitor_analysis.py:15 scripts/amazon_listing_competitor_analysis.py:35-37 scripts/amazon_listing_competitor_analysis.py:62-64 scripts/amazon_listing_competitor_analysis.py:90-92 SKILL.md:22 SKILL.md:71
🔑 環境變數 (4)
SKILL.md:4 SKILL.md:20 scripts/amazon_listing_competitor_analysis.py:23 scripts/amazon_listing_competitor_analysis.py:112-118
⚙️ 外部命令 (1)
SKILL.md:42-44

偵測到的模式

Credential-Bearing HTTP RequestsDismissed Critical Combination Heuristic

審計版本 2

低風險

May 21, 2026, 08:09 AM

Static analyzer flagged 85 patterns across 2 files, producing a risk score of 100/100. After evaluation, the vast majority are false positives: network calls target only the BrowserAct API (the skill's own service), environment variable access reads a single documented API key sent exclusively to its originating service, and SKILL.md backtick detections are all Markdown formatting, not executable shell commands. The CRITICAL heuristic (code execution + network + credential access) describes a legitimate API client pattern. One minor confirmed finding: the skill executes a Python script via shell command with user-supplied ASIN argument, but input is an alphanumeric ASIN identifier with negligible injection surface. No prompt injection, data exfiltration, or malicious intent detected.

2
已掃描檔案
329
分析行數
6
發現
claude
審計單位
低風險問題 (3)
scripts/amazon_listing_competitor_analysis.py:112scripts/amazon_listing_competitor_analysis.py:23
Environment Variable Access for API Key
The Python script reads the BROWSERACT_API_KEY environment variable and sends it as a Bearer token in Authorization headers to api.browseract.com. The key is used exclusively to authenticate with its own issuing service. No exfiltration to third parties. Standard API client pattern.
SKILL.md:42-44
Shell Command Execution with User Input
SKILL.md instructs the AI agent to execute a Python script via shell command with a user-supplied ASIN argument. The ASIN parameter is passed as a command-line argument. ASINs are alphanumeric Amazon identifiers (e.g., B0CS62LY6P) with a constrained character set, making command injection impractical. Nonetheless, any shell execution with user input warrants documentation.
scripts/amazon_listing_competitor_analysis.py:15scripts/amazon_listing_competitor_analysis.py:18SKILL.md:22
Hardcoded External URLs in Source
Both the Python script and SKILL.md contain hardcoded URLs pointing to browseract.com (API endpoint, integrations page, plan upgrade page) and amazon.com (default marketplace). All URLs point to the skill's own service or the documented target platform. No unknown or suspicious domains.

風險因素

🌐 網路存取 (5)
scripts/amazon_listing_competitor_analysis.py:35 scripts/amazon_listing_competitor_analysis.py:62 scripts/amazon_listing_competitor_analysis.py:90 scripts/amazon_listing_competitor_analysis.py:15 SKILL.md:22
🔑 環境變數 (3)
scripts/amazon_listing_competitor_analysis.py:112 scripts/amazon_listing_competitor_analysis.py:23 SKILL.md:4
⚙️ 外部命令 (1)
SKILL.md:42-44

偵測到的模式

Code Execution + Network + Credential Access CombinationMarkdown Backticks Misidentified as Shell ExecutionWeak Cryptographic Algorithm False Positive

審計版本 1

低風險

Apr 28, 2026, 09:19 AM

Static analysis flagged 85 potential issues with a 100/100 risk score. After semantic evaluation, these are predominantly false positives: network calls go to legitimate BrowserAct API (api.browseract.com), environment access is standard API key retrieval, and external command references are documentation examples in markdown. The skill is a straightforward wrapper around BrowserAct's Amazon listing extraction service with no malicious intent detected.

2
已掃描檔案
329
分析行數
9
發現
claude
審計單位
中風險問題 (1)
SKILL.md:43-44
Python Script Execution via Command Line
The skill invokes Python scripts via command-line arguments. Script accepts ASIN and marketplace URL as parameters. Arguments are passed from user input without shell expansion.
低風險問題 (5)
scripts/amazon_listing_competitor_analysis.py:112-113
Environment Variable Access for API Key
The script reads BROWSERACT_API_KEY from environment variables. This is standard practice for API credential management.
scripts/amazon_listing_competitor_analysis.py:35-38
Network Access to BrowserAct API
Script makes HTTP requests to api.browseract.com for Amazon listing extraction. All network calls are to a single, legitimate third-party service.
scripts/amazon_listing_competitor_analysis.py:45-46
False Positive: System Reconnaissance Flags
Static analyzer flagged system reconnaissance at lines 45-53 of python script. These are JSON response parsing checks (checking for 'id', 'Invalid authorization', 'concurrent' in API responses).
SKILL.md:3
False Positive: Weak Cryptographic Algorithm Flags
Static analyzer flagged weak cryptographic algorithms at multiple SKILL.md locations. Analysis shows these are word matches in documentation (e.g., 'verify', 'encrypt', 'hash', 'encode' in usage instructions) with no actual cryptographic implementation.
SKILL.md:20
False Positive: Ruby/Shell Backtick Execution Flags
Static analyzer flagged backtick execution in SKILL.md. Analysis shows these are markdown code block examples (documentation showing python -u ./scripts/... commands), not actual shell executions.

風險因素

🌐 網路存取 (14)
scripts/amazon_listing_competitor_analysis.py:35 scripts/amazon_listing_competitor_analysis.py:62 scripts/amazon_listing_competitor_analysis.py:90 scripts/amazon_listing_competitor_analysis.py:15 scripts/amazon_listing_competitor_analysis.py:18 scripts/amazon_listing_competitor_analysis.py:48 scripts/amazon_listing_competitor_analysis.py:116 scripts/amazon_listing_competitor_analysis.py:122 SKILL.md:22 SKILL.md:36 SKILL.md:37 SKILL.md:43 SKILL.md:46 SKILL.md:71
🔑 環境變數 (5)
scripts/amazon_listing_competitor_analysis.py:112-113 scripts/amazon_listing_competitor_analysis.py:118 scripts/amazon_listing_competitor_analysis.py:124 SKILL.md:4 SKILL.md:20
⚙️ 外部命令 (1)
SKILL.md:43-44
← 回到技能