Security audit
Zoho Mail
Security checks across malware telemetry and agentic risk
Overview
This is a disclosed Zoho Mail integration that uses Maton to access email, with sensitive but expected email permissions and no hidden local code found.
Install only if you are comfortable letting an agent use Maton-mediated access to your Zoho Mail account. Confirm every send, delete, move, label, folder, or attachment action before it runs, avoid exposing MATON_API_KEY in shared logs, and remove the Maton connection when you no longer need it.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
63/63 vendors flagged this skill as clean.
Static analysis
No suspicious patterns detected.
