nopal-orchestrate

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill directly fetches and parses user- and third-party-generated content from Google Workspace (e.g., gws gmail +triage and gws gmail users messages get, gws drive files list, gws sheets +read, gws calendar +agenda shown throughout SKILL.md) and uses those parsed results to build ExecutionPlans and drive follow-up actions, so external messages/files could materially influence agent decisions and tool use.