rippling-hr
Pass
Audited by Gen Agent Trust Hub on Mar 12, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the Membrane CLI from the official NPM registry using
npm install -g @membranehq/cli. This is a standard installation procedure for a well-known service provider. - [COMMAND_EXECUTION]: The skill provides numerous example commands using the
membraneCLI to manage connections, search for actions, and execute API requests. These commands are intended for the user to run in their terminal to interact with the Rippling HR API. - [CREDENTIALS_UNSAFE]: The skill explicitly follows best practices by instructing the user to never handle API keys or tokens directly, instead using
membrane loginandmembrane connectto manage authentication server-side.
Audit Metadata