Skills
skills/wadewarren/gws-claude-plugin/gws-sheets-append/Gen Agent Trust Hub

gws-sheets-append

Pass

Audited by Gen Agent Trust Hub on Mar 20, 2026

Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
  • [SAFE]: No malicious behavior, obfuscation, or unauthorized data access patterns were identified in the skill definition.- [COMMAND_EXECUTION]: The skill executes the gws binary to interact with Google Sheets. This behavior is expected and aligns with the tool's primary function.- [INDIRECT_PROMPT_INJECTION]: The skill processes untrusted external data which is then written to a spreadsheet, creating a potential surface for indirect injection. This is a known risk for data-processing tools but is consistent with the skill's intended use.
  • Ingestion points: Data is accepted via --values and --json-values flags in SKILL.md.
  • Boundary markers: Absent.
  • Capability inventory: The skill uses the gws binary to perform write operations to Google Sheets.
  • Sanitization: Not present; the skill passes raw strings to the CLI tool.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 20, 2026, 04:56 PM