gog

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md explicitly instructs using commands that fetch and read user emails, Drive files, Docs, and Sheets (e.g., gog gmail search, gog docs cat, gog drive search, gog sheets get), which ingests untrusted/user-generated third‑party content that could contain instructions affecting subsequent agent actions.