Amazon Seller
Warn
Audited by Snyk on Jun 3, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).
- Direct money access detected (high risk: 1.00). The skill is explicitly for Amazon seller operations and includes Advertising (PPC) workflows that define campaign budgets (e.g., "budget: $20/day") and automated bid/budget actions (e.g., "bid_optimization" rules like "increase_bid_10%", "decrease_bid_15%", "pause_keyword"). Those entries indicate the skill is designed to programmatically modify ad spend/bids (directly controlling budgets/spend). This meets the criteria for Direct Financial Execution (managing ad spend budgets). Other APIs shown (SP-API for orders/inventory/shipments) are seller-management APIs but the decisive factor is the explicit PPC budget and automated bid update actions.
MEDIUM W021: Hidden or invisible Unicode characters detected (potential obfuscation or prompt injection).
- Hidden Unicode characters detected (1 type(s) found)
Issues (2)
W009
MEDIUMDirect money access capability detected (payment gateways, crypto, banking).
W021
MEDIUMHidden or invisible Unicode characters detected (potential obfuscation or prompt injection).
Audit Metadata