box-automation

SUSPICIOUS: The skill is internally consistent for Box automation, but it routes sensitive Box operations and auth through a third-party MCP/Composio service instead of direct Box APIs. That makes it a coherent integration skill with notable trust and data-flow risk, not confirmed malware.