odoo
Pass
Audited by Gen Agent Trust Hub on Feb 25, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill includes a
setup.ps1script andrequirements.txtthat facilitate the installation of standard Python dependencies (python-dotenv,pytest,pytest-cov,pytest-mock) via the official package registry (PyPI). - [COMMAND_EXECUTION]: The skill interacts with the Odoo ERP system using the built-in
xmlrpc.clientlibrary. It also implements a local webhook server using Python's standardhttp.serverand a background change-detection poller. These components are essential for the skill's stated purpose of ERP synchronization and management. - [CREDENTIALS_UNSAFE]: The skill requires an Odoo API key for authentication. The implementation correctly handles these credentials by loading them from a
config.jsonfile or environment variables, avoiding any hardcoded secrets in the source code. - [SAFE]: The code is well-documented, includes a comprehensive test suite (73 tests), and explicitly addresses its security posture in the documentation. No suspicious network activities, unauthorized file access, or obfuscation techniques were identified during the analysis.
Audit Metadata