googlemeet-automation
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEPROMPT_INJECTIONNO_CODE
Full Analysis
- [Indirect Prompt Injection] (LOW): The skill processes untrusted data from external sources (Google Calendar events and Gmail contacts) and possesses the capability to modify user data.
- Ingestion points: Data retrieved from GOOGLECALENDAR_FIND_FREE_SLOTS, GOOGLECALENDAR_PATCH_EVENT, and GMAIL_SEARCH_PEOPLE.
- Boundary markers: Absent; the skill lacks instructions to the agent to treat data as untrusted or ignore embedded commands.
- Capability inventory: The skill allows the agent to create and patch calendar events and create meeting spaces.
- Sanitization: Absent; no methods are described for validating or escaping content retrieved from external Google services.
Audit Metadata