Skills
skills/membranedev/application-skills/google-docs/Gen Agent Trust Hub

google-docs

Pass

Audited by Gen Agent Trust Hub on Apr 28, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: Downloads the @membranehq/cli package from the npm registry, which is the official tool for interacting with the author's integration platform.
  • [COMMAND_EXECUTION]: Uses the Membrane CLI to perform authenticated operations on Google Docs, including searching for, creating, and running document actions.
  • [PROMPT_INJECTION]: The skill interacts with external document data, creating a potential surface for indirect prompt injection.
  • Ingestion points: Document content retrieved from Google Docs via the get-document action in SKILL.md.
  • Boundary markers: Absent from the skill instructions.
  • Capability inventory: Commands such as batch-update-document and delete-content allow the agent to modify or remove data.
  • Sanitization: No specific sanitization or filtering of document content is implemented.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 28, 2026, 10:02 AM