ClawHub

Todoist Api Rest

Security checks across malware telemetry and agentic risk

Overview

This is a straightforward Todoist API helper, but users should handle the Todoist token carefully and review commands that create or complete tasks before running them.

Install only if you are comfortable using a Todoist API token with curl commands. Prefer the TODOIST_API_TOKEN environment variable, keep the token out of logs and prompts, and review any create or complete-task command because those commands will change your Todoist account.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Context-Inappropriate Capability

Low
Confidence
95% confidence
Finding
The skill explicitly instructs users to source an API token from a local secrets file outside the declared environment variable flow. That expands the skill's effective access to local credential material and normalizes reading secrets from disk, which increases the risk of unintended secret exposure or misuse by downstream agents.

Missing User Warnings

Medium
Confidence
92% confidence
Finding
The documentation includes create-task and close-task commands that modify remote user data without clearly warning that these are state-changing operations. In an agent skill context, omission of mutation warnings can lead to unintended execution and silent modification of a user's Todoist account.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The setup section references a secret token file but provides no credential-handling warning. This can encourage unsafe secret access patterns, including copying tokens from disk into commands, shells, logs, or prompts where they may be exposed.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal