Inbox Manager

Security checks across malware telemetry and agentic risk

Overview

This Gmail inbox skill is transparent about OAuth and email trashing, but its bulk-delete guidance lacks clear confirmation and scoping safeguards.

Review this before installing on important Gmail accounts. Use it only with accounts you intend to manage, keep the OAuth files private, and require the agent to show the exact account, query, message count, and sample messages before archive or trash actions, especially for bulk cleanup or scheduled runs.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 90% confidence
Finding: The skill explicitly documents message trash operations and bulk deletion behavior, but does not require any user confirmation, preview, dry-run mode, or scoped safety check before destructive actions. In a multi-account Gmail management context, this increases the likelihood of accidental or overbroad deletion of legitimate emails, especially when using search filters or batch requests.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal