Skills
skills/jetbrains/skills/gws-keep/Gen Agent Trust Hub

gws-keep

Pass

Audited by Gen Agent Trust Hub on Apr 28, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [SAFE]: The skill provides a set of instructions for using the gws CLI to interact with Google Keep API resources. This is standard functionality for a productivity-oriented AI agent skill.
  • [PROMPT_INJECTION]: The skill presents a surface for indirect prompt injection as it processes external content from Google Keep notes.
  • Ingestion points: Data enters the context via the get, list, and media download methods described in SKILL.md.
  • Boundary markers: The instructions do not define delimiters or directives to ignore instructions embedded in the note content.
  • Capability inventory: The agent has the ability to execute shell commands via the gws binary.
  • Sanitization: There is no specified sanitization or validation of the retrieved note data or media content.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 28, 2026, 10:49 PM
Security Audit — agent-trust-hub — gws-keep