google-workspace-ops

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's Workflow explicitly instructs the agent to "Start with the Drive search surface" and to inspect and summarize shared Google Drive assets (Docs, Sheets, Slides), meaning it will fetch and read user-generated third-party content from Google Drive that could contain instruction-like text and influence edits.