I just want to know if a trigger-action automation App can use the its OAuth token to make an API call (action) without receiving the triggering event, i.e., does the scope of the token allow this?
I got an answer in this thread OAuth Token Misuse Possible, but I’m not sure of it.