Apple Notes 1.0.0

Security checks across malware telemetry and agentic risk

Overview

This skill is a disclosed Apple Notes helper, but it requires trusting a third-party macOS CLI with access to your Notes.

Install only if you trust the memo project and its Homebrew tap. Review selected note titles before editing, moving, exporting, or deleting, and treat deletion as potentially irreversible. Revoke Notes Automation access in macOS settings when you no longer need it.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 88% confidence
Finding: The skill explicitly documents note deletion but does not instruct the agent to obtain clear user confirmation or warn about irreversibility and potential data loss. In an agent setting, this increases the chance that a user request is interpreted too broadly or that a destructive action is taken without adequate safeguards, causing unintended deletion of personal notes.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal