Skills
skills/browser-act/skills/amazon-product-api-skill/Gen Agent Trust Hub

amazon-product-api-skill

Pass

Audited by Gen Agent Trust Hub on Mar 28, 2026

Risk Level: SAFE
Full Analysis
  • [COMMAND_EXECUTION]: The skill executes a local Python script (amazon_product_api.py) to interface with the BrowserAct API. This is the intended method for providing the skill's functionality.
  • [DATA_EXFILTRATION]: The script communicates with api.browseract.com, which is an official endpoint for the skill author. It transmits search parameters (keywords, brand, etc.) and uses an API key provided by the user via environment variables. There is no evidence of sensitive local data being accessed or exfiltrated.
  • [CREDENTIALS_UNSAFE]: The skill correctly instructs the user to provide the BROWSERACT_API_KEY via an environment variable and does not contain any hardcoded secrets.
  • [EXTERNAL_DOWNLOADS]: The script uses the standard requests library to communicate with the vendor's API. No external code or executable files are downloaded or executed from untrusted sources.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 28, 2026, 03:42 PM