Hello,
In order to publish a Google cloud application for OAuth that has restricted scope (for example https://www.googleapis.com/auth/gmail.compose) requires passing verification and security assessment. If the assessment is passed and another restricted scope (for example https://www.googleapis.com/auth/drive) is added, will my application need to pass another security assessment?