todoist-automation

SUSPICIOUS: The skill’s capabilities match Todoist automation, and the MCP endpoint appears to be an official Composio/Rube service, so this is not overt malware. However, it routes account access and data through a third-party intermediary, understates authentication requirements, and enables broad destructive actions on the user’s Todoist account, making it medium-high risk.