The Agent Skills Directory

[SAFE]: The skill defines a set of commands for the 'gws' (Google Workspace) utility to interact with Google Drive. The steps include listing folder contents, downloading files, and exporting Google Docs as PDFs, which are standard operations for this tool. No suspicious behavior or unauthorized access patterns were detected.\n- [PROMPT_INJECTION]: The skill exhibits an indirect prompt injection surface because it processes data from an external source (Google Drive).\n
Ingestion points: The gws drive files list and gws drive files get commands in SKILL.md ingest external file metadata and content.\n
Boundary markers: The current templates lack specific delimiters or isolation instructions to prevent the agent from interpreting ingested data as commands.\n
Capability inventory: The skill utilizes the gws binary to perform file listing and local filesystem write operations via the -o output flag.\n
Sanitization: No input validation or content sanitization is implemented for the data retrieved from Google Drive.

recipe-bulk-download-folder