spreadsheets

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill directly reads and acts on user-created spreadsheet content via the Google Sheets API (e.g., read-range and get actions calling https://sheets.googleapis.com shown in SKILL.md and skill-router.json), which exposes the agent to untrusted, user-generated third-party data that could influence subsequent actions.