odoo-dev

Warn

Audited by Socket on Jul 2, 2026

1 alert found:

Anomaly
AnomalyLOW
SKILL.md

SUSPICIOUS: the skill’s Odoo-focused capabilities are coherent with its stated purpose, but it relies on an unverifiable `odoo-ai` command path and transitive skill dependencies without clear publisher or install provenance. No direct malicious behavior or explicit exfiltration is shown, yet the combination of external CLI use, likely credentialed RPC access, and undocumented trust boundaries makes this a medium-risk skill.

Confidence: 82%Severity: 56%
Audit Metadata
Analyzed At
Jul 2, 2026, 05:59 PM
Package URL
pkg:socket/skills-sh/tuanle96%2Fodoo-ai-skills%2Fodoo-dev%2F@b6213bd10a723ff79a03cd9dde02b7a844c3c586b644a81e0e1544945986b110
Security Audit — socket — odoo-dev