MH apple-reminders
AdvisoryAudited by Static analysis on Apr 30, 2026.
Overview
No suspicious patterns detected.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
A mistaken or ambiguous deletion command could remove reminders or lists from the user's Reminders app.
The skill documents commands that can delete reminder lists or individual reminders. This is aligned with the stated purpose, but destructive operations should be user-directed.
remindctl list Work --delete # Delete list remindctl delete 4A83 --force # Delete by ID
Use explicit list names or reminder IDs, and confirm before deleting or completing reminders.
Once authorized, the CLI can read and modify Apple Reminders data available to the local macOS account.
The skill requires the remindctl CLI to receive macOS Reminders permission, which allows access to the user's local Apple Reminders data.
macOS-only; grant Reminders permission when prompted
Grant Reminders permission only if you trust the installed remindctl CLI and want the agent to manage that data.
The security of the skill depends on the external remindctl package installed through Homebrew.
The skill depends on an external Homebrew tap rather than bundled reviewed code. This is normal for a CLI wrapper, but it means the installed binary's provenance matters.
brew | formula: steipete/tap/remindctl | creates binaries: remindctl
Review or trust the remindctl project and Homebrew tap before installing, especially before granting Reminders permission.