gapi
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [DATA_EXFILTRATION] (SAFE): The skill is designed to manage Google API credentials locally. Files such as
credentials.jsonandtoken.jsonare used for storing OAuth secrets; however, the provided versions use placeholders likeYOUR_CLIENT_IDandYOUR_ACCESS_TOKEN, ensuring no sensitive data is pre-exposed. - [PROMPT_INJECTION] (LOW): The skill presents a surface for indirect prompt injection. Because it retrieves and displays data from external sources (Google Analytics and Tag Manager), a malicious actor with control over the metadata in those accounts (e.g., account names or tag descriptions) could attempt to embed instructions to influence the agent. This is a common risk for tools that read untrusted external data.
- [COMMAND_EXECUTION] (SAFE): The skill uses the Bash tool specifically to execute its internal Node.js scripts. The scripts use a custom argument parser and do not exhibit obvious command injection vulnerabilities.
Audit Metadata