subscribe-hr
Pass
Audited by Gen Agent Trust Hub on Apr 29, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: Installs the official Membrane CLI (
@membranehq/cli) from the NPM registry. This is a required tool provided by the vendor for managing integrations. - [COMMAND_EXECUTION]: Uses the
membraneCLI to perform authenticated operations, discover API actions, and manage HR data. All operations are scoped to the user's Membrane account and specific Subscribe-HR connections. - [REMOTE_CODE_EXECUTION]: Supports the creation of custom actions via
membrane action create. This functionality generates integration logic on the Membrane platform based on user descriptions, which is a core feature of the vendor's service. - [DATA_EXFILTRATION]: Utilizes a centralized authentication model where credentials and tokens are managed server-side by the Membrane platform, effectively preventing the exposure of sensitive API keys or local secrets.
Audit Metadata