gog
Pass
Audited by Gen Agent Trust Hub on Mar 17, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill installs the 'gog' command-line interface via Homebrew using the formula 'steipete/tap/gogcli'.
- [COMMAND_EXECUTION]: The skill executes the 'gog' binary to perform various operations across Google Workspace services, including Gmail, Calendar, Drive, and Sheets.
- [PROMPT_INJECTION]: The skill is vulnerable to indirect prompt injection due to its ability to ingest and process untrusted external data from the user's Google Workspace account.
- Ingestion points: Reads email bodies, document text, and spreadsheet data through commands like 'gog gmail search', 'gog docs cat', and 'gog sheets get' (SKILL.md).
- Boundary markers: None. The skill does not implement delimiters or specific instructions to the agent to disregard commands found within the retrieved data.
- Capability inventory: The skill possesses impactful capabilities such as sending emails ('gog gmail send'), creating calendar events ('gog calendar create'), and modifying spreadsheet data ('gog sheets update') (SKILL.md).
- Sanitization: None. There is no evidence of filtering or sanitizing the content retrieved from external sources before it is presented to the agent.
Audit Metadata