Gws Gmail Reply All
Security checks across malware telemetry and agentic risk
Overview
This is a small, disclosed Gmail reply-all command helper; the main risk is that it can send email through an external GWS CLI.
Install this only if you trust the GWS CLI and its Gmail authorization setup. Use --dry-run or --draft for sensitive threads, and verify the active Gmail account, sender alias, recipients, message body, and attachments before sending.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
65/65 vendors flagged this skill as clean.