google-drive-automation
Pass
Audited by Gen Agent Trust Hub on Mar 5, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADS
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill requires the configuration of an external MCP server endpoint at
https://rube.app/mcp. This third-party service is used to interface with the Composio Google Drive toolkit. - [DATA_EXPOSURE]: The skill includes tools like
GOOGLEDRIVE_ADD_FILE_SHARING_PREFERENCEwhich can change file visibility toanyone. While this is a core feature of the skill, it represents a risk if the agent is instructed to share sensitive files publicly. - [PROMPT_INJECTION]: The skill exhibits an indirect prompt injection attack surface (Category 8) because it processes untrusted data from an external source (Google Drive).
- Ingestion points: File content and metadata are retrieved via
GOOGLEDRIVE_FIND_FILEandGOOGLEDRIVE_DOWNLOAD_FILE. - Boundary markers: No specific delimiters or "ignore instructions" markers are defined for the data retrieved from Google Drive.
- Capability inventory: The agent has the ability to modify permissions (
GOOGLEDRIVE_ADD_FILE_SHARING_PREFERENCE), upload files, and move files. - Sanitization: No explicit sanitization or validation of the retrieved file content is mentioned before it is processed by the agent.
Audit Metadata