Sunsama

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed Sunsama integration that uses a Maton API key to manage tasks, calendar items, channels, timers, objectives, and linked email threads.

Install this only if you intend to let Maton mediate access to your Sunsama account and any linked Gmail or Outlook threads. Review each requested write, delete, meeting, and email action before approving it, and keep the MATON_API_KEY private.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access

Findings (2)

Description-Behavior Mismatch

Medium

Confidence: 97% confidence
Finding: The schema exposes a `create_channel` operation that does not align with the stated Sunsama capabilities in the manifest, which focus on tasks, calendar events, backlog, objectives, time tracking, and email threads. This kind of capability drift increases the attack surface and can enable unauthorized or unexpected actions if the tool is invoked under the assumption it only performs documented Sunsama operations.

Vague Triggers

Low

Confidence: 81% confidence
Finding: The description 'Create a new channel/context for tasks' is underspecified and does not define what platform the channel belongs to, what permissions are required, or under what user intent this action should be used. Broad or ambiguous tool descriptions make unsafe activation more likely, especially when the surrounding skill already has a wider integration surface through managed authentication.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal