gws-forms

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). This skill calls the Google Forms API (e.g., forms.get and forms.responses listed in SKILL.md) and therefore ingests user-generated form content and responses, which are untrusted third-party data that could contain instructions influencing agent behavior.