← All controls

65 Apps Script / add-on / AI-agent governance

Apps Script, add-ons and AI-agent integrations all run code with a user's OAuth scopes inside the tenant, and anyone can author a script. This control turns Apps Script off by default and on only for the OU that actually builds automation, allows only script projects owned inside the organisation, sets unconfigured third-party apps to blocked so new add-ons and agent integrations must be allowlisted by client ID, and reviews the domain-wide delegation list — a delegated service account bypasses per-user consent entirely and is the most dangerous add-on of all.

Caveats

Setup steps

  1. open ↗ Apps › Additional Google services › Google Apps Script

    Service status = Off for everyone; On for the automation OU

    Turn Apps Script on or off for users ↗

  2. open ↗ Security › Access and data control › API controls › App access control

    Trust internal, domain-owned apps = On (organisation-owned scripts allowed; external/unknown scripts fall under the unconfigured-apps block)

  3. Security › Access and data control › API controls › App access control

    Settings: Unconfigured third-party apps = Don't allow users to access any third-party apps; Manage third-party app access: trusted apps added explicitly (№8)

    Control which apps access Google Workspace data ↗ Control which third-party & internal apps access Google Workspace data ↗

  4. open ↗ Security › Access and data control › API controls › Domain-wide delegation

    Remove any client id without a named owner and a justified scope list

    Control API access with domain-wide delegation ↗

Ongoing maintenance

How to verify

  1. From a test account, run a script that calls a restricted API/scope — the consent or execution must be refused per the policy.

v0.1.3Preventedition All (OAuth-scope controls: Ent/Edu Std+) policy #37 · #19, #36 ↗