isolved

SUSPICIOUS: the skill's purpose is coherent, and the CLI install path looks like a normal npm-distributed vendor tool, but all authentication and API traffic are funneled through Membrane rather than directly to Isolved. For sensitive HRIS/payroll data, that third-party intermediary model creates notable data-flow and credential-trust risk even without clear evidence of malware.