bamboohr-install-auth

Facilitates the installation and configuration of BambooHR API authentication using HTTP Basic Auth for seamless integration.

Install this skill

or

46/100

Security score

The bamboohr-install-auth skill was audited on May 19, 2026 and we found 22 security issues across 3 threat categories. Review the findings below before installing.

Categories Tested

Security Issues

medium line 92

Template literal with variable interpolation in command context

SourceSKILL.md

92	const BASE_URL = `https://api.bamboohr.com/api/gateway.php/${COMPANY}/v1`;

medium line 96

Template literal with variable interpolation in command context

SourceSKILL.md

96	'Authorization': `Basic ${Buffer.from(`${API_KEY}:x`).toString('base64')}`,

medium line 101

Template literal with variable interpolation in command context

SourceSKILL.md

101	const res = await fetch(`${BASE_URL}/employees/directory`, { headers });

medium line 105

Template literal with variable interpolation in command context

SourceSKILL.md

105	console.log(`Connected. ${data.employees?.length ?? 0} employees found.`);

medium line 107

Template literal with variable interpolation in command context

SourceSKILL.md

107	console.error(`Auth failed: ${res.status} ${res.statusText}`);

medium line 109

Template literal with variable interpolation in command context

SourceSKILL.md

109	if (errHeader) console.error(`Detail: ${errHeader}`);

medium line 142

Template literal with variable interpolation in command context

SourceSKILL.md

142

```bash

low line 62

Access to .env file

SourceSKILL.md

62	# Create .env file for local development

low line 63

Access to .env file

SourceSKILL.md

63	cat > .env << 'EOF'

low line 69

Access to .env file

SourceSKILL.md

69	echo '.env' >> .gitignore

low line 70

Access to .env file

SourceSKILL.md

70	echo '.env.local' >> .gitignore

low line 90

Access to .env file

SourceSKILL.md

90	const COMPANY = process.env.BAMBOOHR_COMPANY_DOMAIN!;

low line 91

Access to .env file

SourceSKILL.md

91	const API_KEY = process.env.BAMBOOHR_API_KEY!;

medium line 151

Access to .env file

SourceSKILL.md

151	- `.env` file created and git-ignored

low line 34

External URL reference

SourceSKILL.md

34	https://api.bamboohr.com/api/gateway.php/{companyDomain}/v1/

low line 50

External URL reference

SourceSKILL.md

50	1. Log in to BambooHR at `https://{companyDomain}.bamboohr.com`

low line 92

External URL reference

SourceSKILL.md

92	const BASE_URL = `https://api.bamboohr.com/api/gateway.php/${COMPANY}/v1`;

low line 123

External URL reference

SourceSKILL.md

123	BASE_URL = f"https://api.bamboohr.com/api/gateway.php/{COMPANY}/v1"

low line 144

External URL reference

SourceSKILL.md

144	"https://api.bamboohr.com/api/gateway.php/${BAMBOOHR_COMPANY_DOMAIN}/v1/employees/directory" \

low line 173

External URL reference

SourceSKILL.md

173	- [BambooHR API Getting Started](https://documentation.bamboohr.com/docs/getting-started)

low line 174

External URL reference

SourceSKILL.md

174	- [BambooHR Authentication Docs](https://documentation.bamboohr.com/docs)

low line 175

External URL reference

SourceSKILL.md

175	- [BambooHR API Technical Overview](https://documentation.bamboohr.com/docs/api-details)

Scanned on May 19, 2026

View Security Dashboard

Installation guide →

GitHub Stars 2.2K

Rate this skill

Categoryhr

UpdatedJune 10, 2026

claude-code api hr-generalist hr-analyst business-development bamboohr hr sales

jeremylongshore/claude-code-plugins-plus-skills