persona-customer-support
Pass
Audited by Gen Agent Trust Hub on Mar 4, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns detected. The skill uses standard Google Workspace commands (gws) to manage emails, sheets, and calendar events as part of its primary function. Analysis of the metadata and instructions confirms they align with the stated purpose of customer support management.
- [PROMPT_INJECTION]: The skill possesses an attack surface for indirect prompt injection because it processes external content from Gmail messages. However, this is necessary for its core functionality of triaging support tickets.
- Ingestion points: Incoming emails via 'gws gmail +triage'.
- Boundary markers: None specified in the instructions.
- Capability inventory: Subprocess calls to the 'gws' utility for email, sheets, chat, and calendar operations.
- Sanitization: Not specified in the instruction markdown.
Audit Metadata