gog
Pass
Audited by Gen Agent Trust Hub on Mar 11, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONDATA_EXFILTRATIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill requires the installation of the
gogutility via a third-party Homebrew tap (steipete/tap/gogcli). - [COMMAND_EXECUTION]: The agent executes the
gogbinary to perform various administrative and communication tasks within the Google Workspace environment. - [DATA_EXFILTRATION]: The skill is designed to access and transmit highly sensitive personal data from Gmail messages, Google Drive files, Contacts, and Spreadsheet values as part of its core functionality.
- [PROMPT_INJECTION]: The skill presents an indirect prompt injection surface as it processes untrusted data from external sources.
- Ingestion points: Gmail message bodies, Drive file content, and Google Docs text (SKILL.md).
- Boundary markers: None defined; external content is ingested without explicit delimiters or safety instructions.
- Capability inventory: The skill can send emails (
gog gmail send), create calendar events (gog calendar create), and update spreadsheets (gog sheets update) across all scripts. - Sanitization: No evidence of sanitization or validation of the ingested content is present in the skill documentation.
Audit Metadata