Wufoo → Google Sheets without the middle man
Jed Wood

I’m a (mostly) non-developer infosec guy trying to wrap my head around the possible risks here.

Is “View and manage your spreadsheets in Google Drive” as fine-grained a permission as you can get? The script technically has the ability to read/write/create any Google Sheet, but chooses to limit its access to self-write the ssid set as a script property by setMeUp(), correct? I can’t imagine a way that could be abused, just wondering if it could be tighter.