ERPClaw is a coherent local ERP skill, but it grants broad financial and code-execution authority with several under-scoped trust boundaries users should review before installing.
Install only if you are comfortable giving this skill authority over local business books, payroll data, credentials, backups, and GitHub-sourced ERP modules. Use it in a dedicated account or sandbox first, keep backups, review every module before approving installation, avoid absolute-path CSV imports from untrusted prompts, and do not rely on RBAC as a hard security boundary unless you have verified user context and permissions are enforced in your runtime.