ClawHub

Zoho Mail

Security checks across malware telemetry and agentic risk

Overview

This Zoho Mail skill is a coherent mail integration, but it gives an agent broad authenticated mailbox authority without enough guardrails for deletes, sends, or raw API requests.

Install only if you trust Membrane and are comfortable granting delegated Zoho Mail access. Require explicit confirmation before sending, deleting, moving, bulk-updating, or using raw proxy requests, and revoke the Zoho/Membrane connection when no longer needed.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (2)

Missing User Warnings

Medium
Confidence
88% confidence
Finding
The skill documents destructive actions such as deleting emails, moving emails, and changing read state without requiring or even recommending user confirmation. In an agent setting, this increases the risk of unintended mailbox modifications or data loss from ambiguous prompts, mistaken action selection, or overbroad automation.

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The proxy request feature enables arbitrary authenticated API calls, including writes, deletes, and transmission of mailbox data, yet the skill provides no caution about data modification, exfiltration, or the need for user approval. In a general-purpose agent context, exposing raw proxy capability without guardrails meaningfully increases the blast radius of prompt mistakes or malicious user instructions.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal