google-drive

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill programmatically lists, searches (including fullText), downloads, and exports arbitrary Google Drive files—user-generated content from a third-party cloud storage—(see search_files using "fullText contains", download_file, and export_file), so the agent will read untrusted external content that could contain indirect prompt injections.