Gmail Delete Email

Security checks across malware telemetry and agentic risk

Overview

The skill appears to be a disclosed Google Workspace command helper, with a Gmail trash command that users should handle carefully but that fits the stated purpose.

Install only if you intend to let the agent operate your Google Workspace account. Before using any Gmail trash/delete command, have the agent show the sender, subject, date, and message ID, and confirm the exact message to avoid accidental mailbox changes.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 95% confidence
Finding: The skill operationalizes a destructive action (`gog gmail trash <messageId>`) with no built-in requirement for explicit user confirmation, message preview, or scope validation before execution. In an agent setting, this increases the risk of accidental or unauthorized deletion of emails due to misinterpreted instructions, incorrect message IDs, or prompt injection via surrounding workflow context.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal