Skills
skills/kcchien/skills/gws-sheets/Gen Agent Trust Hub

gws-sheets

Pass

Audited by Gen Agent Trust Hub on Apr 16, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [PROMPT_INJECTION]: The skill acts as a data ingestion surface for indirect prompt injection by reading content from external spreadsheets.
  • Ingestion points: Data retrieved from spreadsheets using methods such as spreadsheets.get, getByDataFilter, and values.get via the gws command-line utility.
  • Boundary markers: The skill documentation does not specify the use of delimiters or instructions to the agent to ignore potentially malicious embedded commands in the retrieved data.
  • Capability inventory: The skill allows for comprehensive spreadsheet management including creating sheets, reading values, and performing batch updates using the gws binary.
  • Sanitization: No sanitization or validation processes are mentioned for the content ingested from the spreadsheets.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 16, 2026, 03:09 PM