odoo-user-guide
Pass
Audited by Gen Agent Trust Hub on Jul 2, 2026
Risk Level: SAFECOMMAND_EXECUTIONDATA_EXFILTRATIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill invokes external CLI tools and scripts within the local environment to manage the documentation workflow.\n
- Several scripts (
odoo-guide-doctor,odoo-guide-init,odoo-guide-render) utilizesubprocess.runto execute sibling project scripts, specificallyodoo-aiandbuild_report.pylocated in adjacent directories (../../odoo-introspect/and../../html-report/). These executions are used for environment introspection and report generation.\n - The
odoo-guide-runscript performs dynamic code execution by injecting JavaScript strings (_ANNOTATE_JS,_DECLUTTER_JS,_CLEAR_JS) into the browser context via Playwright'spage.evaluateto highlight UI elements and remove debug banners.\n- [DATA_EXFILTRATION]: The skill performs network operations to interact with Odoo instances as part of its primary functionality.\n - It utilizes the
xmlrpc.clientlibrary to interact with Odoo's XML-RPC API for gathering grounding metadata (view architectures, access rights) and verifying record states.\n - It uses Playwright to automate browser sessions on target Odoo URLs provided by the user to capture step-by-step screenshots.\n- [PROMPT_INJECTION]: The skill possesses an indirect prompt injection surface as it processes untrusted data from the Odoo user interface to generate prose.\n
- Ingestion points: The agent ingests Odoo UI elements such as button labels, menu text, and form view metadata through both Playwright accessibility trees and XML-RPC architectures (specifically in
odoo-guide-prepandodoo-guide-run).\n - Boundary markers: The skill does not implement explicit boundary markers or instructions to the agent to disregard potential instructions embedded within Odoo UI text fields.\n
- Capability inventory: The skill possesses capabilities for filesystem access (writing reports/screenshots), network communication (XML-RPC), and subprocess execution.\n
- Sanitization: The
odoo-guide-renderscript utilizeshtml.escapeto sanitize data before embedding it in the final HTML report, providing protection against simple markup injection.
Audit Metadata