ClawHub

Voice Memo Transcribe

Security checks across malware telemetry and agentic risk

Overview

This skill does what it says: it helps transcribe Apple Voice Memos and save them to Apple Notes, but it handles private recordings and iCloud-synced notes.

Install only if you are comfortable granting Full Disk Access to the terminal and saving transcript content into Apple Notes/iCloud. Review the selected recordings and generated notes before saving, and delete /tmp/note_content.txt after use.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (4)

Lp3

Medium
Category
MCP Least Privilege
Confidence
95% confidence
Finding
The skill instructs writing note content to /tmp/note_content.txt and creating Apple Notes entries, but no explicit permissions or capability declaration is present. Undeclared file-write behavior is dangerous because users and hosting platforms cannot accurately assess what local data the skill modifies, and temporary files in shared locations can expose sensitive transcript contents to other local processes or users.

Tp4

High
Category
MCP Tool Poisoning
Confidence
89% confidence
Finding
The documented behavior does not fully match the operational steps: the skill accesses the Voice Memos database, extracts embedded transcripts, and only shows example Apple Notes writing rather than a clearly bounded implemented workflow. This mismatch is risky because users may consent to transcription without realizing the skill reads local databases or writes/syncs sensitive content across iCloud-connected devices.

Missing User Warnings

Medium
Confidence
93% confidence
Finding
Reading Apple Voice Memos data requires Full Disk Access, which materially increases the trust boundary of the skill. If this requirement is not prominently warned about before use, users may grant broad filesystem privileges without understanding that the skill can access sensitive local data beyond the immediate recording workflow.

Missing User Warnings

Medium
Confidence
96% confidence
Finding
The skill writes transcribed content into Apple Notes and states that notes sync automatically via iCloud, but it does not provide a clear user-facing warning about this data propagation. This is dangerous because recordings often contain highly sensitive personal or business information, and automatic cross-device/cloud sync can create unintended disclosure or retention risks.

VirusTotal

67/67 vendors flagged this skill as clean.

View on VirusTotal