greenhouse

Integrates with Greenhouse Harvest API for efficient applicant tracking and recruiting, enhancing candidate management processes.

Install this skill

13/100

Security score

The greenhouse skill was audited on May 16, 2026 and we found 31 security issues across 2 threat categories. Review the findings below before installing.

Categories Tested

Security Issues

medium line 17

Curl to non-GitHub URL

SourceSKILL.md

17	curl -s "https://harvest.greenhouse.io/v1/candidates?per_page=5" --header "Authorization: Basic $(printf "%s:" "$GREENHOUSE_TOKEN" \| base64 -w 0)"

medium line 37

Curl to non-GitHub URL

SourceSKILL.md

37	curl -s "https://harvest.greenhouse.io/v1/candidates?per_page=100&page=1" --header "Authorization: Basic $(printf "%s:" "$GREENHOUSE_TOKEN" \| base64 -w 0)"

medium line 51

Curl to non-GitHub URL

SourceSKILL.md

51	curl -s -D - "https://harvest.greenhouse.io/v1/candidates?per_page=100&page=1" --header "Authorization: Basic $(printf "%s:" "$GREENHOUSE_TOKEN" \| base64 -w 0)" -o /tmp/greenhouse_candidates.json

medium line 61

Curl to non-GitHub URL

SourceSKILL.md

61	curl -s "https://harvest.greenhouse.io/v1/candidates/<candidate-id>" --header "Authorization: Basic $(printf "%s:" "$GREENHOUSE_TOKEN" \| base64 -w 0)"

medium line 90

Curl to non-GitHub URL

SourceSKILL.md

90	curl -s -X POST "https://harvest.greenhouse.io/v1/candidates" --header "Authorization: Basic $(printf "%s:" "$GREENHOUSE_TOKEN" \| base64 -w 0)" --header "On-Behalf-Of: <greenhouse-user-id>" --header "

medium line 98

Curl to non-GitHub URL

SourceSKILL.md

98	curl -s "https://harvest.greenhouse.io/v1/applications?per_page=100&page=1&status=active" --header "Authorization: Basic $(printf "%s:" "$GREENHOUSE_TOKEN" \| base64 -w 0)"

medium line 111

Curl to non-GitHub URL

SourceSKILL.md

111	curl -s "https://harvest.greenhouse.io/v1/jobs?status=open&per_page=100" --header "Authorization: Basic $(printf "%s:" "$GREENHOUSE_TOKEN" \| base64 -w 0)"

medium line 125

Curl to non-GitHub URL

SourceSKILL.md

125	curl -s "https://harvest.greenhouse.io/v1/job_posts?active=true&live=true&per_page=100" --header "Authorization: Basic $(printf "%s:" "$GREENHOUSE_TOKEN" \| base64 -w 0)"

medium line 131

Curl to non-GitHub URL

SourceSKILL.md

131	curl -s "https://harvest.greenhouse.io/v1/offers?status=sent&per_page=100" --header "Authorization: Basic $(printf "%s:" "$GREENHOUSE_TOKEN" \| base64 -w 0)"

medium line 142

Curl to non-GitHub URL

SourceSKILL.md

142	curl -s "https://harvest.greenhouse.io/v1/scheduled_interviews?per_page=100" --header "Authorization: Basic $(printf "%s:" "$GREENHOUSE_TOKEN" \| base64 -w 0)"

medium line 168

Curl to non-GitHub URL

SourceSKILL.md

168	curl -s -X POST "https://harvest.greenhouse.io/v1/candidates/<candidate-id>/activity_feed/notes" --header "Authorization: Basic $(printf "%s:" "$GREENHOUSE_TOKEN" \| base64 -w 0)" --header "On-Behalf-O

medium line 176

Curl to non-GitHub URL

SourceSKILL.md

176	curl -s "https://harvest.greenhouse.io/v1/[email protected]" --header "Authorization: Basic $(printf "%s:" "$GREENHOUSE_TOKEN" \| base64 -w 0)"

medium line 182

Curl to non-GitHub URL

SourceSKILL.md

182	curl -s "https://harvest.greenhouse.io/v1/candidates/<candidate-id>/activity_feed" --header "Authorization: Basic $(printf "%s:" "$GREENHOUSE_TOKEN" \| base64 -w 0)"

medium line 190

Curl to non-GitHub URL

SourceSKILL.md

190	curl -s "https://harvest.greenhouse.io/v1/applications?job_id=<job-id>&status=active&per_page=500" --header "Authorization: Basic $(printf "%s:" "$GREENHOUSE_TOKEN" \| base64 -w 0)"

low line 8

External URL reference

SourceSKILL.md

8	If requests fail, run `zero doctor check-connector --env-name GREENHOUSE_TOKEN` or `zero doctor check-connector --url https://harvest.greenhouse.io/v1/candidates --method GET`

low line 17

External URL reference

SourceSKILL.md

17	curl -s "https://harvest.greenhouse.io/v1/candidates?per_page=5" --header "Authorization: Basic $(printf "%s:" "$GREENHOUSE_TOKEN" \| base64 -w 0)"

low line 30

External URL reference

SourceSKILL.md

30	Base URL: `https://harvest.greenhouse.io`

low line 37

External URL reference

SourceSKILL.md

37	curl -s "https://harvest.greenhouse.io/v1/candidates?per_page=100&page=1" --header "Authorization: Basic $(printf "%s:" "$GREENHOUSE_TOKEN" \| base64 -w 0)"

low line 51

External URL reference

SourceSKILL.md

51	curl -s -D - "https://harvest.greenhouse.io/v1/candidates?per_page=100&page=1" --header "Authorization: Basic $(printf "%s:" "$GREENHOUSE_TOKEN" \| base64 -w 0)" -o /tmp/greenhouse_candidates.json

low line 54

External URL reference

SourceSKILL.md

54	The `Link` header looks like: `<https://harvest.greenhouse.io/v1/candidates?page=2&per_page=100>; rel="next", ...`.

low line 61

External URL reference

SourceSKILL.md

61	curl -s "https://harvest.greenhouse.io/v1/candidates/<candidate-id>" --header "Authorization: Basic $(printf "%s:" "$GREENHOUSE_TOKEN" \| base64 -w 0)"

low line 90

External URL reference

SourceSKILL.md

90	curl -s -X POST "https://harvest.greenhouse.io/v1/candidates" --header "Authorization: Basic $(printf "%s:" "$GREENHOUSE_TOKEN" \| base64 -w 0)" --header "On-Behalf-Of: <greenhouse-user-id>" --header "

low line 98

External URL reference

SourceSKILL.md

98	curl -s "https://harvest.greenhouse.io/v1/applications?per_page=100&page=1&status=active" --header "Authorization: Basic $(printf "%s:" "$GREENHOUSE_TOKEN" \| base64 -w 0)"

low line 111

External URL reference

SourceSKILL.md

111	curl -s "https://harvest.greenhouse.io/v1/jobs?status=open&per_page=100" --header "Authorization: Basic $(printf "%s:" "$GREENHOUSE_TOKEN" \| base64 -w 0)"

low line 125

External URL reference

SourceSKILL.md

125	curl -s "https://harvest.greenhouse.io/v1/job_posts?active=true&live=true&per_page=100" --header "Authorization: Basic $(printf "%s:" "$GREENHOUSE_TOKEN" \| base64 -w 0)"

low line 131

External URL reference

SourceSKILL.md

131	curl -s "https://harvest.greenhouse.io/v1/offers?status=sent&per_page=100" --header "Authorization: Basic $(printf "%s:" "$GREENHOUSE_TOKEN" \| base64 -w 0)"

low line 142

External URL reference

SourceSKILL.md

142	curl -s "https://harvest.greenhouse.io/v1/scheduled_interviews?per_page=100" --header "Authorization: Basic $(printf "%s:" "$GREENHOUSE_TOKEN" \| base64 -w 0)"

low line 168

External URL reference

SourceSKILL.md

168	curl -s -X POST "https://harvest.greenhouse.io/v1/candidates/<candidate-id>/activity_feed/notes" --header "Authorization: Basic $(printf "%s:" "$GREENHOUSE_TOKEN" \| base64 -w 0)" --header "On-Behalf-O

low line 176

External URL reference

SourceSKILL.md

176	curl -s "https://harvest.greenhouse.io/v1/[email protected]" --header "Authorization: Basic $(printf "%s:" "$GREENHOUSE_TOKEN" \| base64 -w 0)"

low line 182

External URL reference

SourceSKILL.md

182	curl -s "https://harvest.greenhouse.io/v1/candidates/<candidate-id>/activity_feed" --header "Authorization: Basic $(printf "%s:" "$GREENHOUSE_TOKEN" \| base64 -w 0)"

low line 190

External URL reference

SourceSKILL.md

190	curl -s "https://harvest.greenhouse.io/v1/applications?job_id=<job-id>&status=active&per_page=500" --header "Authorization: Basic $(printf "%s:" "$GREENHOUSE_TOKEN" \| base64 -w 0)"

Scanned on May 16, 2026

View Security Dashboard

Installation guide →

GitHub Stars 60

Rate this skill

Categoryhr

UpdatedMay 20, 2026

openclaw api recruiter hr-generalist business-development hr sales

vm0-ai/vm0-skills