gplay-user-management
Warn
Audited by Gen Agent Trust Hub on Feb 15, 2026
Risk Level: MEDIUMCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION] (MEDIUM): The skill provides commands for the gplay CLI to manage users and grants, which are high-privilege administrative actions.
- [PROMPT_INJECTION] (MEDIUM): The skill is susceptible to indirect prompt injection when processing untrusted data for command arguments. 1. Ingestion points: Arguments for --email, --package, and --permissions flags. 2. Boundary markers: None specified in the bash templates. 3. Capability inventory: Full user and grant CRUD capabilities in Google Play Console. 4. Sanitization: No input validation or sanitization logic is present in the skill definition.
Audit Metadata