pp-eu-tenders
Enables users to analyze EU public procurement data for lead generation and market intelligence, focusing on B2B opportunities.
Install this skill
or
85/100
Security score
The pp-eu-tenders skill was audited on Jun 6, 2026 and we found 3 security issues across 2 threat categories. Review the findings below before installing.
Categories Tested
Security Issues
medium line 238
Webhook reference - potential data exfiltration
SourceSKILL.md
| 238 | | `webhook:<url>` | POST the output body to the URL (`application/json` or `application/x-ndjson` when `--compact`) | |
medium line 240
Webhook reference - potential data exfiltration
SourceSKILL.md
| 240 | Unknown schemes are refused with a structured error naming the supported set. Webhook failures return non-zero and log the URL + HTTP status on stderr. |
medium line 226
Access to hidden dotfiles in home directory
SourceSKILL.md
| 226 | Entries are stored locally at `~/.eu-tenders-pp-cli/feedback.jsonl`. They are never POSTed unless `EU_TENDERS_FEEDBACK_ENDPOINT` is set AND either `--send` is passed or `EU_TENDERS_FEEDBACK_AUTO_SEND= |
Scanned on Jun 6, 2026
View Security DashboardGitHub Stars 1.4K
Rate this skill
Categorydata analytics
UpdatedJune 10, 2026
claudeclaude-codefrontendreactdocxgitapidatabasetestingbackendmarket-research-analystbusiness-developmentgrowth-marketersales-operationsproduct-marketer🇩🇪 DE🇫🇷 FRdata analyticssalesmarketing
mvanhorn/printing-press-library