Npjames Apple Notes
ReviewAudited by ClawScan on May 10, 2026.
Overview
This skill is a straightforward Apple Notes integration, but it can read, edit, delete, move, and export personal notes through a third-party CLI.
This skill appears benign for managing Apple Notes on macOS. Before installing, make sure you trust the external memo CLI, understand that macOS Automation access lets it control Notes.app, and confirm any edit, delete, move, or export operation carefully.
Findings (4)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The agent could modify, move, export, or delete Apple Notes if invoked for those tasks.
The skill exposes note-management commands that can change or delete user data. This is aligned with the stated purpose, but users should notice the impact before allowing those actions.
Create, view, edit, delete, search, move notes between folders, and export to HTML/Markdown.
Use it only for intended notes actions, and carefully review interactive selections before confirming edits, moves, exports, or deletes.
Once granted, the tool can access and manipulate Apple Notes through macOS permissions.
Granting Automation access allows the CLI, and therefore the agent using it, to interact with Apple Notes. This is necessary for the integration but is still a meaningful local permission.
if prompted, grant Automation access to Notes.app
Grant Automation access only if you trust the memo CLI and want the agent to manage Notes; revoke the permission in macOS settings if no longer needed.
Installing the dependency runs and later uses third-party local software.
The skill depends on an external Homebrew tap and binary that are not included in the reviewed artifact set. This is common for CLI integration skills, but it requires trusting that upstream package.
Install (Homebrew): `brew tap antoniorodr/memo && brew install antoniorodr/memo/memo`
Install the memo CLI only from a source you trust, and review the upstream project if your Notes contain sensitive information.
Personal note contents may be shown to the agent or written to export files during normal use.
The skill can retrieve and export persistent Apple Notes content. The artifacts do not show unsafe reuse or storage, but note contents may be sensitive and can enter the agent's working context when viewed or searched.
List all notes: `memo notes`; Search notes (fuzzy): `memo notes -s "query"`; Export to HTML/Markdown: `memo notes -ex`
Avoid listing, searching, or exporting sensitive notes unless you intend the agent to see that content.