paypro

SUSPICIOUS. The skill is not overtly malicious and uses an official npm-distributed CLI tied to the stated publisher ecosystem, but its purpose is internally inconsistent: it claims a PayPro payroll integration while linking to PayPal docs and describing a payments/invoicing data model. It also routes authentication and API activity through Membrane as a third-party intermediary rather than directly to the vendor API. Overall this looks like a templated or mislabeled integration skill with medium trust and data-flow risk, not confirmed malware.