gws-sheets

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's SKILL.md explicitly instructs the agent to run "gws sheets +read --spreadsheet --range ..." to fetch Google Sheets data (user-generated/third-party content) which the agent is expected to read and which could materially influence follow-up actions like appends/updates.