ClawHub

Linkedin Odoo

Security checks across malware telemetry and agentic risk

Overview

The skill performs the advertised Odoo contact LinkedIn lookup and update, but users should be aware it sends contact name and company data to DuckDuckGo and can overwrite a CRM field.

Install only if your organization allows CRM contact names and company names to be sent to DuckDuckGo for enrichment. Use a least-privileged Odoo API key limited to the needed contact read/write access, run it only for intended contact IDs, and manually verify results before relying on the updated LinkedIn field.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Lp3

Medium
Category
MCP Least Privilege
Confidence
96% confidence
Finding
The skill declares no permissions even though its documented behavior requires reading Odoo credentials from environment variables and making outbound network requests to both Odoo and an external search engine. This creates a transparency and governance gap: users and reviewers cannot accurately assess what sensitive capabilities the skill will exercise, increasing the chance of unintended credential use or external data exposure.

Missing User Warnings

Medium
Confidence
98% confidence
Finding
The skill sends a contact's name and company to an external web search service to locate a LinkedIn profile, but the description does not warn the user that contact data leaves the Odoo environment. This is a privacy and compliance risk, especially if the contact data is sensitive, regulated, or subject to customer confidentiality requirements; the skill context makes this more dangerous because it processes CRM contact records, which often contain personal and business-identifying information.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The script sends a contact's name and associated company to DuckDuckGo to discover a LinkedIn profile, which discloses potentially sensitive business contact data to a third-party service without explicit notice, consent, or policy enforcement. In an enterprise CRM context, this can violate privacy expectations, internal data-handling rules, or regulatory obligations even if the behavior is part of the feature's intended function.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal