google-drive

This module implements OAuth token management but contains a suspicious design that sends refresh tokens to a non-Google, third-party endpoint (https://google-workspace-extension.geminicli.com/refreshToken). That behavior presents a realistic risk of credential exfiltration and supply-chain compromise. Aside from that, the code has some inconsistencies/bugs in redirect_uri handling and potentially leaks tokens by printing them. I consider this a medium-to-high security risk unless the external service is verified and trusted.