gws-calendar
Pass
Audited by Gen Agent Trust Hub on May 5, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill is a standard documentation-style prompt for interacting with the gws CLI. It does not contain any obfuscated code, unauthorized data exfiltration patterns, or attempts to bypass system constraints.
- [PROMPT_INJECTION]: Indirect Prompt Injection Surface:
- Ingestion points: The skill reads calendar event data (summaries, descriptions) from the Google Calendar API via
gws calendar +agendaandgws calendar events list(SKILL.md). - Boundary markers: The instructions do not define specific delimiters to separate untrusted calendar content from system instructions.
- Capability inventory: The agent has the ability to create, update, and delete events, and modify access control lists (ACLs) using the
gwsCLI (SKILL.md). - Sanitization: No explicit sanitization or filtering of calendar data is mentioned.
- Note: While a surface exists, the risk is mitigated by the skill's mandatory security rule requiring user confirmation for all destructive or state-changing operations.
Audit Metadata