Voicenotes Official 1.0.3

Security checks across malware telemetry and agentic risk

Overview

This skill does what it says: it lets an agent search, read, and create notes in the user's Voicenotes account using a Voicenotes API key.

Install only if you trust Voicenotes and the publisher, and treat VOICENOTES_API_KEY like a password because it can expose private note content and create notes in your account. For write actions, ask the agent to confirm before creating a note, and revoke or rotate the API key if you stop using the skill.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 87% confidence
Finding: The skill explicitly supports creating notes in the user's remote Voicenotes account, which is a state-changing operation. The documentation does not prominently warn that this action modifies persistent remote user data, increasing the risk of accidental writes, unwanted note creation, or misuse through ambiguous prompts.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal