Back to skill

Security audit

Zoho Mail

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed Zoho Mail integration that uses Maton to access email, with sensitive but expected email permissions and no hidden local code found.

Install only if you are comfortable letting an agent use Maton-mediated access to your Zoho Mail account. Confirm every send, delete, move, label, folder, or attachment action before it runs, avoid exposing MATON_API_KEY in shared logs, and remove the Maton connection when you no longer need it.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.