recipe-share-event-materials
Pass
Audited by Gen Agent Trust Hub on Mar 20, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns or security violations were detected. The skill uses standard Google Workspace CLI (gws) commands to facilitate automation between Calendar and Drive.
- [PROMPT_INJECTION]: The skill is subject to indirect prompt injection risks by processing untrusted data from Google Calendar events.
- Ingestion points: Attendee data retrieved from the
gws calendar events getcommand inSKILL.md. - Boundary markers: No delimiters or safety instructions are provided to separate the retrieved event data from the agent's instructions.
- Capability inventory: The skill has the capability to modify file permissions using
gws drive permissions createas documented inSKILL.md. - Sanitization: No sanitization or validation of attendee email addresses or event data is performed before processing.
Audit Metadata