gog
Pass
Audited by Gen Agent Trust Hub on Mar 6, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill utilizes the
gogCLI binary to perform actions across Google Workspace, including reading and modifying emails, files, and calendar entries.- [EXTERNAL_DOWNLOADS]: Requires the installation of a third-party binary via a non-standard Homebrew tap (steipete/tap/gogcli).- [PROMPT_INJECTION]: Potential for indirect prompt injection due to processing untrusted data from external sources: - Ingestion points: Reads content from Gmail messages, Google Drive files, Contacts, Sheets, and Docs using
gogcommands defined inSKILL.md. - Boundary markers: No delimiters or safety instructions are specified to help the agent distinguish between its instructions and retrieved content.
- Capability inventory: Possesses the ability to send emails, create calendar events, and update spreadsheets, which could be abused if malicious instructions are followed.
- Sanitization: No sanitization or validation of the retrieved external content is mentioned before it is processed by the agent.
Audit Metadata