Dropbox Business
ReviewAudited by ClawScan on May 1, 2026.
Overview
This is a coherent Dropbox Business admin API integration, but using it means trusting Maton’s gateway with sensitive Dropbox Business admin access and carefully confirming any account-changing actions.
Before installing, confirm that your organization is comfortable granting Maton-managed OAuth access to Dropbox Business admin APIs. Use a least-privileged admin account, review the OAuth permissions, specify the intended connection when multiple accounts exist, and require exact resource IDs plus explicit confirmation for any write or delete action.
Findings (3)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If authorized, the integration can access sensitive Dropbox Business team administration data and potentially support admin actions.
The skill requires a Dropbox Business OAuth connection with admin-level authority; this is expected for the stated purpose but is high-impact access.
The connection grants team-level admin access — only install if you trust this integration and intend to grant Dropbox Business admin access.
Use the least-privileged Dropbox admin account available, review OAuth permissions before authorizing, and remove the connection when no longer needed.
A mistaken approved action could remove members, delete folders, revoke sessions, or change admin permissions in a Dropbox Business team.
The skill documents powerful administrative actions, including destructive or account-changing operations, while also instructing the agent to obtain explicit confirmation.
All write operations require explicit user approval with specific identifiers... High-impact operations... removing members (`wipe_data`), permanently deleting team folders, revoking device sessions, or modifying admin permissions
Only approve write operations after the agent displays the exact target resource, intended effect, and irreversible consequences.
Team member data, audit logs, device information, and other Dropbox Business responses may pass through the Maton gateway.
Dropbox Business requests are routed through Maton’s gateway, which means sensitive business API traffic and OAuth-mediated access depend on that third-party service.
The gateway proxies requests to `api.dropboxapi.com` and automatically injects your OAuth token.
Install only if you trust Maton to handle Dropbox Business API traffic and OAuth connections for your organization.