google-ads
Query, audit, and optimize Google Ads campaigns. Supports two modes: (1) API mode for bulk operations with the google-ads Python SDK, (2) attached-browser mode for users without API access. Use when asked to check ad performance, pause campaigns or keywords, find wasted spend, audit conversion tracking, or optimize Google Ads accounts.
86
86%
Does it follow best practices?
Impact
Pending
No eval scenarios have been run
Advisory
Suggest reviewing before use
Security
2 findings — 2 medium severity. This skill can be installed but you should review these findings before use.
W011: Third-party content exposure detected (indirect prompt injection risk)
What this means
The skill exposes the agent to untrusted, user-generated content from public third-party sources, creating a risk of indirect prompt injection. This includes browsing arbitrary URLs, reading social media posts or forum comments, and analyzing content from unknown websites.
Why it was flagged
Third-party content exposure detected (high risk: 0.90). The skill's Browser Mode explicitly instructs the agent to navigate to and snapshot pages on the public ads.google.com site (see SKILL.md "Browser Mode" workflows and references/browser-workflows.md navigation and "Get Campaign Performance"/"Find Zero-Conversion Keywords"), requiring the agent to read and interpret live third‑party account content which can directly influence decisions and actions (e.g., pausing campaigns/keywords).
W009: Direct money access capability detected (payment gateways, crypto, banking)
What this means
The skill is specifically designed for direct financial operations, giving the agent the ability to move money or execute financial transactions — such as payment processing, cryptocurrency operations, banking integrations, or market order execution.
Why it was flagged
Direct money access detected (high risk: 1.00). The skill is explicitly designed to manage Google Ads accounts and includes mutating/ad-changing operations. It provides API-mode examples that perform mutate calls (e.g., pausing keywords via AdGroupCriterionOperation) and lists mutating actions such as "pause/enable/edit bids/budgets." The Security & Change-Control Addendum specifically acknowledges editing budgets/bids as account-affecting actions. Managing/updating ad spend/budgets via the Ads API constitutes direct financial execution under the guidelines (managing ad spend budgets via API), so this skill grants direct financial execution capability.
- Repository
- jdrhyne/agent-skills
- Commit
6768672
- Audited
- Security analysis
Is this your skill?
If you maintain this skill, you can claim it as your own. Once claimed, you can manage eval scenarios, bundle related skills, attach documentation or rules, and ensure cross-agent compatibility.