paychex
Pass
Audited by Gen Agent Trust Hub on Apr 29, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill implements secure authentication practices by using a managed connection service (Membrane) to handle OAuth and tokens, explicitly instructing the agent never to ask users for API keys or secrets.
- [EXTERNAL_DOWNLOADS]: The skill installs the
@membranehq/clipackage from the official NPM registry. This is a legitimate dependency required for the tool's functionality and originates from the vendor's own namespace. - [COMMAND_EXECUTION]: Uses the
membraneCLI to interact with the Paychex API. All command patterns (login, connect, action run) are standard for the tool and strictly limited to the skill's stated purpose of managing HR and payroll data.
Audit Metadata