ClawHub

Apple Reminder

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed Apple Reminders helper, but it can edit, complete, and permanently delete real synced reminders.

Install only if you want an agent to manage your Apple Reminders. Verify that remindctl is from a trusted source, review the matched reminder ID/title before edit, complete, or delete actions, and remember that deletions may be permanent and sync to your Apple devices.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (3)

Description-Behavior Mismatch

High
Confidence
95% confidence
Finding
The skill metadata describes creation of reminders, but this file implements irreversible deletion of existing reminders using `remindctl delete ... --force`. That mismatch is dangerous because users or higher-level agents may invoke the skill under the assumption it only creates reminders, leading to unexpected destructive actions and possible data loss.

Vague Triggers

Medium
Confidence
81% confidence
Finding
The skill uses broad natural-language routing examples such as 'Remind me,' 'Show my reminders,' and 'Delete [reminder]' without clear confirmation or disambiguation boundaries. In an agentic environment, this can cause unintended invocation or destructive actions from ordinary conversational phrasing, especially for delete/complete/edit operations tied to synced personal data.

Missing User Warnings

Medium
Confidence
89% confidence
Finding
The skill documents permanent deletion and immediate iCloud sync but does not require or emphasize a safety check before destructive actions. Because deletions and updates propagate across devices, an accidental or mis-targeted command can quickly cause irreversible user data loss beyond the local machine.

VirusTotal

56/56 vendors flagged this skill as clean.

View on VirusTotal