Notesctl
WarnAudited by ClawScan on May 10, 2026.
Overview
The skill mostly matches its Apple Notes purpose, but one script builds an AppleScript command with an unescaped folder name, which could let a crafted folder argument change what runs on the Mac.
This skill is mostly transparent and purpose-aligned for Apple Notes automation, but you should review it before installing because of the unescaped AppleScript folder parameter. If you use it, keep folder names simple/trusted and avoid running note operations based on untrusted text until the script validates or escapes the folder argument.
Findings (3)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
A maliciously crafted folder name passed to this script could potentially make the agent run unintended AppleScript on the user's Mac instead of only creating a note.
TITLE and BODY are escaped before use, but FOLDER is inserted directly into the AppleScript string. If a crafted folder value contains AppleScript syntax such as quotes or statement separators, it could change the command being executed.
osascript -e "tell application \"Notes\" to make new note at folder \"$FOLDER\" with properties {name:\"$TITLE_AS\", body:\"$BODY_AS\"}"Escape or strictly validate the folder name before building the AppleScript, or pass it through a safer AppleScript parameter mechanism. Avoid using untrusted text as the folder argument.
The agent can read note listings/search results and create notes in the user's Apple Notes environment.
The skill intentionally operates on the user's Apple Notes data under the current macOS user's local app/account permissions.
Manage Apple Notes via deterministic local scripts (create, append, list, search, export, and edit).
Install only if you are comfortable letting OpenClaw operate on Apple Notes, and review macOS permission prompts carefully.
Private note titles or contents may be displayed to or processed by the agent during search/export workflows.
The search script can retrieve Apple Notes content, including across folders when no folder is specified, which may bring private note text into the agent's context.
if [[ -n "$FOLDER" ]]; then memo notes -f "$FOLDER" -s "$QUERY" else memo notes -s "$QUERY" fi
Use specific search terms and folders, and avoid asking the agent to search or export notes containing sensitive information unless needed.