gogcli

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md shows the tool explicitly reads and ingests user/third-party content from Google services (e.g., Gmail bodies via "gog gmail messages search --include-body" and "gog gmail thread get", Docs via "gog docs cat", Drive files via "gog drive download") and then can take actions (send email, update files, create events), so untrusted user-generated content from those sources could influence behavior.