Security audit
Drive
Security checks across malware telemetry and agentic risk
Overview
The Drive plugin's requested capabilities, runtime instructions, and code are consistent with a local file‑management tool that operates inside a configured root folder and does not ask for unrelated credentials or external installs.
This plugin will access and modify files under the configured Drive root and its trash directory—so set rootPath to a dedicated folder (not your home or system folders) and keep trashPath within a safe location. Review or pin the plugin version if you want to audit changes over time. If you need stronger guarantees, inspect the functions that canonicalize/resolve paths (resolveExistingDrivePath, ensureRoot, movePath) to confirm they prevent escapes (symlink/.. traversal) before granting access to sensitive directories.
VirusTotal
No VirusTotal findings
Static analysis
No suspicious patterns detected.
