gog
Pass
Audited by Gen Agent Trust Hub on Mar 14, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONDATA_EXFILTRATIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill requires the installation of the gog CLI tool from a third-party Homebrew tap (steipete/tap/gogcli), which is outside the list of trusted vendors.
- [COMMAND_EXECUTION]: Multiple commands execute the gog binary to perform operations on Google services, which involves interacting with the local shell and environment.
- [DATA_EXFILTRATION]: The skill's primary function involves accessing sensitive personal information from Gmail, Google Drive, Contacts, and Sheets. It possesses the capability to send this data externally via email or save it to local files.
- [PROMPT_INJECTION]: The skill is vulnerable to indirect prompt injection as it retrieves and processes content from untrusted external sources like Gmail messages and Drive files.
- Ingestion points: Gmail messages, Drive search results, Sheets data, and Docs content (SKILL.md).
- Boundary markers: No explicit delimiters or instructions to ignore embedded commands are present in the skill instructions.
- Capability inventory: The skill can send emails, create calendar events, and update sheets (SKILL.md).
- Sanitization: No sanitization or filtering of retrieved external content is performed before processing.
Audit Metadata