zoom-automation

SUSPICIOUS: The skill’s capabilities fit its stated Zoom-automation purpose, and the MCP endpoint appears to be official same-vendor infrastructure rather than a random payload. However, Zoom OAuth tokens and sensitive meeting/recording data are routed through Composio/Rube as a third-party intermediary, and the skill enables consequential actions on the user’s behalf. This is not confirmed malware, but it is a medium-high risk managed integration that requires substantial trust in the intermediary service.