google-drive
Pass
Audited by Gen Agent Trust Hub on May 7, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: Authentication is handled via standard OAuth 2.0 flows, directing users to official Google consent screens rather than harvesting credentials.
- [DATA_EXPOSURE]: The skill implements secure credential management by using the
keyringlibrary to store access tokens in the operating system's secure storage instead of plaintext files. - [COMMAND_EXECUTION]: Operations are performed through a controlled Python script with restricted tool access defined in the skill's manifest, preventing arbitrary command execution.
- [EXTERNAL_DOWNLOADS]: Dependencies such as
google-api-python-clientandgoogle-authare well-known, reputable libraries standard for Google Workspace integrations. - [SAFE]: All network communications are directed to official and well-known Google API endpoints (
googleapis.comandoauth2.googleapis.com).
Audit Metadata