gws-events
Pass
Audited by Gen Agent Trust Hub on Apr 1, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill uses the
gwscommand-line utility to interact with Google Workspace APIs for event and subscription management. - [EXTERNAL_DOWNLOADS]: References official Google Workspace developer documentation for API resource definitions and implementation guides.
- [PROMPT_INJECTION]: The skill processes event data and messages from Google Workspace, which serves as an ingestion point for potentially untrusted content through indirect prompt injection.
- Ingestion points: Workspace event streams and message updates (SKILL.md).
- Boundary markers: No specific delimiters or safety instructions are provided to the agent for handling retrieved content.
- Capability inventory: The agent can manage subscriptions (create, delete, patch) and stream tasks.
- Sanitization: No explicit sanitization or validation of the event content is described in the instructions.
Audit Metadata