Gws Gmail Read
Security checks across malware telemetry and agentic risk
Overview
This skill is a narrowly scoped Gmail helper for reading a user-specified message, with no evidence of hidden execution or data misuse.
Install only if you trust the local `gws` CLI and its Google Workspace authentication setup. Confirm it is using the intended Gmail account and OAuth scopes, and avoid running it on highly sensitive messages unless reading that content is necessary.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
64/64 vendors flagged this skill as clean.