gog-forms
Pass
Audited by Gen Agent Trust Hub on Jun 24, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill invokes the project-specific
gogCLI tool to interact with Google Forms services. - Evidence:
SKILL.mddefines subcommands such asadd-question,create,delete-question,get,move-question,publish,questions,raw,responses,update, andwatch. - [SAFE]: The skill implements and recommends several security best practices for handling Google data.
- The documentation advises using
--readonlyfor non-mutating tasks to prevent accidental data modification. - The
--wrap-untrustedflag is recommended for processing Google content, providing a defense against indirect prompt injection from form responses or questions. - Use of
--dry-runand--no-inputis suggested for safe automation and verification of destructive actions. - [PROMPT_INJECTION]: The skill handles untrusted data from Google Forms that could contain malicious instructions (Indirect Prompt Injection).
- Ingestion points: The
responses,get, andquestionscommands inSKILL.mdread external data. - Boundary markers: The skill explicitly instructs the agent to use the
--wrap-untrustedflag to mitigate injection risks. - Capability inventory: The skill can perform mutations such as
delete-question,update, andcreate. - Sanitization: Sanitization is delegated to the
gogtool's wrapping mechanism as per the provided instructions.
Audit Metadata