connector-googlemail
Pass
Audited by Gen Agent Trust Hub on Jun 30, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: References the
googlemail-clientpackage from the Mops registry and interacts with the official Gmail API athttps://gmail.googleapis.com. - [PROMPT_INJECTION]: The skill possesses the attack surface for indirect prompt injection by reading external data from Gmail messages.
- Ingestion points: Email content retrieved via
gmail_users_messages_getinSKILL.md. - Boundary markers: None identified.
- Capability inventory: Email sending and draft management capabilities defined in
SKILL.md. - Sanitization: No specific content sanitization or isolation measures are described for handling retrieved email bodies.
Audit Metadata