gpd-submission-health
Pass
Audited by Gen Agent Trust Hub on Mar 10, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill executes multiple commands using the
gpd(Google Play Deployment) CLI tool to validate release edits, monitor track status, and manage store listing assets. These operations are directly related to the skill's primary function of managing app submissions. - [PROMPT_INJECTION]: The skill contains a vulnerability surface for indirect prompt injection.
- Ingestion points: The skill reads external, potentially attacker-controlled data using
gpd publish listing getandgpd publish details getas specified inSKILL.md. - Boundary markers: No delimiters or explicit instructions to disregard embedded commands are used when the agent processes this external data.
- Capability inventory: The skill possesses write-access capabilities, including the ability to release builds to production tracks (
gpd publish release) and upload assets (gpd publish images upload). - Sanitization: There is no evidence of sanitization or filtering of the fetched metadata before it is interpolated into the agent's context.
Audit Metadata