Recipe Draft Email From Doc

Security checks across malware telemetry and agentic risk

Overview

This skill is a simple Google Docs-to-Gmail recipe, but it should be reviewed because it says “draft” while instructing the agent to send an email containing document content.

Before installing or using this skill, treat it as an email-sending recipe rather than a draft-only helper. Verify the Google account, document ID, recipient, subject, and full message body, and require explicit confirmation before allowing the final Gmail send command.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 95% confidence
Finding: The skill directs the agent to send an email via Gmail using content pulled from a Google Doc, but it does not require an explicit user confirmation, preview, or review step before the external side effect occurs. This creates a real risk of unintended outbound communication, including accidental disclosure of sensitive document content or sending messages to the wrong recipient if the recipe is executed automatically or with substituted parameters.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal