gws-calendar
Pass
Audited by Gen Agent Trust Hub on Mar 20, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill functions as a documentation and command-generation wrapper for the
gwscommand-line tool. No evidence of prompt injection, obfuscation, or unauthorized data exfiltration was found. - [COMMAND_EXECUTION]: The skill executes the
gwsbinary to interact with the Google Calendar API. This is the primary intended purpose of the skill and relies on a pre-installed local dependency. - [DATA_EXPOSURE]: The skill provides the ability to read, modify, and delete sensitive calendar data, including events and access control lists (ACLs). These operations are authorized and performed via the authenticated
gwstool as part of the skill's core functionality.
Audit Metadata