agent hive
Join the Waitlist

HR & RECRUITING

Agentic Offboarding Access Discovery

An agent investigates a named departing employee across connected systems, builds the full inventory of accounts and permissions they hold.

CategoryHR & Recruiting
Enginepaperclip
Difficultyadvanced
Triggerwebhook
Steps7
Setup~25 min

How it runs

The automated pipeline, trigger to output.

  • TriggerHR submits employee identifiers (webhook)HTTP webhook
  • ActionEnumerate GitHub permissionsGitHubGitHub
  • ActionEnumerate Slack membershipsSlack
  • ActionInspect Outlook delegations + shared mailboxesOutlook
  • LogicAgent dedupes and ranks access by risk
  • ActionWrite discovered access plan to NotionNotionNotion
  • OutputPost ranked plan to HR for approvalSlack

What it does

Finds access nobody remembered to document. Given an employee's identity, an agent reasons across your systems to discover every account, repo permission, channel membership, and shared resource tied to that person, then assembles a prioritized teardown plan ranked by sensitivity.

When to use it

Use it for long-tenured employees, contractors, or anyone whose access sprawled beyond the standard onboarding list. When you can't trust a static checklist to be complete, the agent does the detective work first.

How it works

  1. 1HR submits the departing employee's identifiers (email, usernames) via webhook.
  2. 2The agent enumerates GitHub org/team/repo permissions for the user.
  3. 3It enumerates Slack workspace and private-channel memberships.
  4. 4It inspects Outlook mailbox delegations and shared-mailbox access.
  5. 5The agent reasons over findings, deduplicates, and ranks each item by risk.
  6. 6It writes the discovered access inventory to Notion as a reviewable plan.
  7. 7It posts the ranked plan to HR for one-click approval before any revocation runs.

Set it up

What you configure once, before turning it on.

  1. 1
    Connect HTTP webhookTrigger any URL on agent actions.
  2. 2
    Connect GitHubRepos, issues, pull requests, actions.
  3. 3
    Connect SlackChannels, DMs, threads, mentions.
  4. 4
    Connect OutlookMail, calendar, contacts.
  5. 5
    Connect NotionPages, databases, comments.
  6. 6
    Set each agent's modelWe leave models unset so you pick the tier — fast + cheap, or top-quality.
  7. 7
    Tune it to your dataEdit the prompts, filters, and field mappings so it matches how your team works.
  8. 8
    Test, then turn it onRun once against a sample, confirm the output, then enable the trigger.

More HR & Recruiting workflows

Route interview feedback by score the moment it is submitted

Receives each interviewer's scorecard via webhook, normalizes the rating, and routes strong-yes feedback to fast-track and any flagged concern to the recruiter.

Loom intake to recruiter handoff email

Transcribes a hiring manager's Loom intake, summarizes the role, and emails a recruiter handoff brief via Outlook with clarifying questions when details are missing.

New-hire equipment order email to IT and vendor

On a scheduled lead-time before each start date, drafts and sends an equipment order email (laptop, monitor.

Compile interview scorecards into a hire-decision packet

When every interviewer has submitted their scorecard in Notion, automatically aggregates the scores, builds a one-page decision packet in Google Drive.

Assemble and send the debrief packet after the final interview

Triggered when a candidate's final interview ends on the calendar, it waits a short window for scorecards, compiles the aggregated packet to Google Drive.

New-Hire Credential Intake to Renewal Calendar Holds

When a new credential is added to the tracker, it validates the record, files the document.

Browse all HR & Recruiting

Run this workflow in your colony.

14-day trial. No DevOps. No Sales call. Provisioned in under a minute.

Join the WaitlistBrowse all workflows