email-calendar-events
Pass
Audited by Gen Agent Trust Hub on Mar 29, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSDATA_EXFILTRATIONCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill defines dependencies on the
caffeineai-email-calendar-eventsandcaffeineai-authorizationpackages via the Motoko Package Manager (mops). These resources are consistent with the vendor's own namespace. - [DATA_EXFILTRATION]: The skill is designed to transmit event metadata—including summaries, descriptions, and locations—to external email recipients. This data transfer is the core intended functionality of the invitation system.
- [COMMAND_EXECUTION]: The backend component provides an interface for CRUD operations (Create, Read, Update, Delete) on a calendar event state machine.
- [PROMPT_INJECTION]: The skill processes user-provided strings for event details (summary and description). While this represents a surface for indirect prompt injection if the data is later processed by an LLM without sanitization, the example implementation mitigates risk by enforcing administrative access controls on the creation and modification of these events.
Audit Metadata