odoorpc-agent-skill

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly instructs agents to connect to arbitrary configured Odoo servers (profiles stored in ~/.config/odoorpc/config.yaml) and to run read-only operations like scripts/odoo_query.py search-read/fields/read as part of its required workflow (see SKILL.md and the scripts), which ingests live, potentially user-generated/untrusted third‑party content that can materially influence subsequent decisions and tool actions.