gws-sheets

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's workflow explicitly includes reading and writing Google Sheets (see the helper commands like "+read" and the API methods 'spreadsheets.get' and 'values'), which allows the agent to ingest arbitrary user-generated spreadsheet content from third-party/public sources that could contain embedded instructions.