google-drive

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly reads and downloads user-generated Google Drive content (see scripts/drive_manager.rb download/get and SKILL.md/integration-patterns which show reading Drive files and piping their contents to Claude for processing), so arbitrary third-party Drive documents can be ingested and influence subsequent actions.