GoG-ifocus
Security checks across malware telemetry and agentic risk
Overview
This is a disclosed Google Workspace CLI helper, but it can read and modify Google account data once the user authorizes it.
Install only if you trust the external gog CLI package and are comfortable granting Google OAuth access. Treat sending mail, creating events, clearing or updating Sheets ranges, copying/exporting Docs, and Drive changes as actions that need explicit user confirmation.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
64/64 vendors flagged this skill as clean.