Gracie Crm

PassAudited by ClawScan on May 1, 2026.

Overview

This appears to be a coherent local CRM helper that stores and updates lead/contact records, with no evidence of exfiltration or hidden background behavior.

This skill looks purpose-aligned for a local CRM. Before installing, be comfortable with storing lead/contact data in the skill directory, review or back up crm.json, and remember that add/call/note/import commands intentionally change the local CRM database.

Findings (3)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Low

#ASI02: Tool Misuse and Exploitation

What this means

Running update commands can alter the local lead database, including sales status and follow-up information.

Why it was flagged

The CLI can modify local CRM records by logging calls, changing statuses, setting follow-up dates, and saving the updated data. This is expected for the stated CRM purpose but can change business records.

Skill content

lead["calls"].append(call_record)
    lead["status"] = new_status
    if args.followup:
        lead["followup_date"] = args.followup

    save(leads)

Recommendation

Use mutating commands only when you intend to update the CRM, and consider backing up crm.json if the lead data matters.

Low

#ASI06: Memory and Context Poisoning

What this means

Lead names, phone numbers, call outcomes, notes, and follow-up dates remain stored locally and may be shown or updated by the skill.

Why it was flagged

The bundled/local CRM database contains persistent lead contact details and notes. This is purpose-aligned, but it is sensitive business context that may be reused in later CRM tasks.

Skill content

"name": "P.A.C. Plumbing",
    "phone": "718-720-4980",
    ...
    "notes": [
      "Owner is Paul, best time is morning before 9am"
    ]

Recommendation

Treat crm.json as business contact data; avoid adding information you would not want stored in the skill directory, and protect or back up the file as needed.

Info

#ASI04: Agentic Supply Chain Vulnerabilities

What this means

You have less external provenance information for deciding whether to trust the included CRM script and lead data.

Why it was flagged

The artifacts do not provide a source repository or homepage. This is a provenance limitation, although the provided install information does not show remote downloads, package installation, or hidden helpers.

Skill content

Source: unknown
Homepage: none

Recommendation

Review the included files before installing and prefer a known source or maintainer if provenance is important for your workflow.