pp-uspto-tsdr

Provides a CLI for accessing USPTO TSDR API, enabling trademark status checks, timelines, and document management.

Install this skill

80/100

Security score

The pp-uspto-tsdr skill was audited on Jun 7, 2026 and we found 4 security issues across 2 threat categories. Review the findings below before installing.

Categories Tested

Security Issues

medium line 193

Webhook reference - potential data exfiltration

SourceSKILL.md

193	\| `webhook:<url>` \| POST the output body to the URL (`application/json` or `application/x-ndjson` when `--compact`) \|

medium line 195

Webhook reference - potential data exfiltration

SourceSKILL.md

195	Unknown schemes are refused with a structured error naming the supported set. Webhook failures return non-zero and log the URL + HTTP status on stderr.

medium line 139

Access to hidden dotfiles in home directory

SourceSKILL.md

139	Or persist it in `~/.config/tsdr-pp-cli/config.toml`.

medium line 181

Access to hidden dotfiles in home directory

SourceSKILL.md

181	Entries are stored locally at `~/.uspto-tsdr-pp-cli/feedback.jsonl`. They are never POSTed unless `USPTO_TSDR_FEEDBACK_ENDPOINT` is set AND either `--send` is passed or `USPTO_TSDR_FEEDBACK_AUTO_SEND=

Scanned on Jun 7, 2026

View Security Dashboard

Installation guide →

GitHub Stars 1.3K

Rate this skill

Categorylegal

UpdatedJune 13, 2026

claude frontend docx git api database testing mobile backend legal-operations ip-specialist business-development legal sales

mvanhorn/printing-press-library