todoist latest

Security checks across malware telemetry and agentic risk

Overview

This skill is a straightforward Todoist command-line integration, but it can change or delete live Todoist tasks when used.

Install only if you want an agent to use the configured td CLI with your Todoist account. Verify the Homebrew tap or Cargo package source, and review any add, edit, complete, or delete action before letting it run, especially when task IDs are involved.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Vague Triggers

Medium

Confidence: 93% confidence
Finding: The trigger description includes broad phrases like "my tasks," "task list," and "add a task," which can match many ordinary user requests and cause the Todoist skill to be invoked unintentionally. Because this skill performs account-connected actions, overbroad activation increases the chance of accidental task creation, modification, or completion in the user's Todoist account.

Missing User Warnings

Medium

Confidence: 89% confidence
Finding: The skill documents destructive and account-modifying operations such as add, done, edit, and delete without prominently warning that these actions affect the live Todoist account and may be difficult to undo. In a tool that auto-syncs writes directly to a remote API, missing warnings and confirmation guidance increase the risk of accidental or unauthorized changes to user data.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal