Skills
skills/kadel/claude-plugins/gws-docs/Gen Agent Trust Hub

gws-docs

Pass

Audited by Gen Agent Trust Hub on May 5, 2026

Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill uses the gws CLI to perform operations on Google Docs, including reading, creating, and updating documents via shell commands.
  • [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection because it ingests and processes untrusted data from external sources.
  • Ingestion points: Document content is retrieved from external Google Documents via the gws docs documents get command.
  • Boundary markers: The skill does not define boundary markers or provide instructions to the agent to ignore potentially malicious instructions embedded within the document content.
  • Capability inventory: The agent can execute shell commands through the gws CLI and potentially other platform-provided tools.
  • Sanitization: No sanitization or escaping mechanisms are described for the content fetched from documents before it is processed by the agent.
Audit Metadata
Risk Level
SAFE
Analyzed
May 5, 2026, 03:46 PM