google-sheets

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly instructs the agent to open and interact with Google Sheets/Drive (https://sheets.google.com and https://drive.google.com) and to take screenshots and use browser_get_text to read spreadsheet contents (user-generated/untrusted data) which the agent must interpret and act on as part of its workflow, allowing embedded instructions in those sheets to influence actions.