zoom-automation

SUSPICIOUS: The skill's Zoom-management capabilities match its stated purpose, and there is no evidence of overt malware or rogue binary installation. Risk comes from using a third-party hosted MCP/auth intermediary (Composio/Rube) for Zoom OAuth and data access, plus the ability to perform external actions like meeting creation and recording management. This is coherent but higher-trust than a direct Zoom integration, so it is best classified as medium risk rather than benign.