one-drive-automation

SUSPICIOUS: The capability set matches a OneDrive automation skill, and the vendor relationship between Rube and Composio appears consistent. However, the skill routes authentication and file operations through a third-party hosted MCP/managed OAuth layer and enables high-impact file/permission actions, so the overall risk is medium-high even without signs of overt malware.