Erp Integration Analysis
PassAudited by ClawScan on May 1, 2026.
Overview
The skill appears to be a user-directed ERP integration analysis helper, with no artifact evidence of hidden execution, exfiltration, persistence, or destructive behavior.
This skill looks safe to use for user-directed ERP integration analysis, but treat ERP exports as sensitive business data. Verify the publisher, provide only the files and fields needed for the analysis, avoid pasting live credentials or secrets, and review any proposed network access or export destination before approving it.
Findings (2)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If installed, the agent may be able to read or write user-selected files and may have network capability available, so users should review any proposed file or external connection actions.
The skill declares access to local files and the network. File access is purpose-aligned with user-provided CSV/Excel/JSON inputs and exports, but network access is not clearly bounded in the visible workflow.
"permissions": [
"filesystem",
"network"
]Use the skill only with files you intend to analyze, and require explicit confirmation before any network request or export involving business data.
Users have less information for verifying who produced the skill and whether it matches a trusted upstream source.
The package source is not identified in the supplied metadata, which limits provenance assurance even though the visible artifacts do not show malicious behavior.
Source: unknown
Confirm the publisher and homepage are trusted before using the skill with sensitive construction, finance, HR, payroll, or project data.