Skills
skills/googleworkspace/cli/persona-event-coordinator/Gen Agent Trust Hub

persona-event-coordinator

Pass

Audited by Gen Agent Trust Hub on Mar 4, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
  • [SAFE]: The skill serves its stated purpose of event coordination using Google Workspace integrations. Analysis of the instructions and metadata revealed no malicious patterns, obfuscation, or unauthorized data exfiltration attempts.
  • [COMMAND_EXECUTION]: The skill utilizes the gws binary to execute tasks across Google services, such as gws calendar +insert, gws drive +upload, and gws gmail +send. These commands are consistent with the skill's intended functionality and are provided by the official vendor.
  • [EXTERNAL_DOWNLOADS]: The skill metadata specifies requirements for the gws binary and several utility skills like gws-calendar and gws-gmail. These are trusted resources originating from the same vendor as the skill author.
  • [PROMPT_INJECTION]: The skill exposes a surface for indirect prompt injection as it processes external data like attendee lists and email content.
  • Ingestion points: Attendee lists and event descriptions processed via the gws commands in SKILL.md.
  • Boundary markers: None identified.
  • Capability inventory: Subprocess calls via the gws binary for Calendar, Gmail, Drive, Chat, and Sheets.
  • Sanitization: No explicit sanitization or validation of the input data is described in the skill instructions.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 4, 2026, 10:49 PM