Gmail Tool

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed Gmail send/read helper, but it requires sensitive Gmail app-password access and may expose mailbox contents when used.

Install only if you are comfortable granting Gmail app-password access. Prefer a dedicated or low-risk Gmail account, keep the app password out of source control and logs, avoid piping email bodies into broad logs or downstream tools, and review any actual gmail-tool executable before running it because it is not included in this bundle.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Low

Confidence: 93% confidence
Finding: The skill explicitly supports reading Gmail inbox contents via IMAP, but the description does not warn users that executing the read functionality may expose sensitive email bodies, subjects, sender metadata, and other inbox information to the local environment, logs, downstream tools, or an AI agent consuming the output. In an agent-skill context, this omission matters because users may invoke the skill without understanding that mailbox data can be surfaced and further processed automatically.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal