google-drive

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly instructs the agent to fetch and download user-generated Google Drive files (e.g., "Download File Content" GET /google-drive/drive/v3/files/{fileId}?alt=media and export endpoints in SKILL.md) which are untrusted third-party content the agent would read and could influence subsequent actions.