QuickBooks Direct

The skill is internally consistent with a QuickBooks Online integration: it requests only the QuickBooks app credentials, runs a local OAuth flow, and stores tokens locally — nothing in the files suggests covert exfiltration or unrelated credential access.

This skill appears to do what it claims: a QuickBooks OAuth flow and API wrapper. Before installing, verify you trust the source and take these precautions: 1) Inspect run.js (it opens a browser and runs a local express server on port 3001 and writes tokens to config.json). 2) Do not put production client_secret/access_token into the skill on a shared machine — consider using environment variables, OS keyring, or a secret manager instead of plaintext config.json. 3) The repository has minor install inconsistencies (no package.json listed and no config.json.template); confirm dependency installation will work in your environment before enabling autoStart. 4) Test in QuickBooks sandbox first and keep config.json permissions restricted (chmod 600 / Windows ACL). 5) Only enable autoStart after testing and auditing network calls/logs. If you want me to, I can list the exact lines in run.js that read/write credentials and start the local server so you can review them.