paycor

SUSPICIOUS: the skill’s core functionality is coherent for a Membrane-published Paycor integration, and the CLI install source appears legitimate. However, it routes authentication and sensitive Paycor HR/payroll data through Membrane rather than directly to Paycor, and it enables meaningful write actions. This looks like a legitimate third-party integration platform, not confirmed malware, but the intermediary data flow and credential custody make it medium risk.