Voicenotes

Security checks across malware telemetry and agentic risk

Overview

This skill is a straightforward Voicenotes sync tool, but users should protect the API token and any synced transcript files.

Install only if you are comfortable giving the skill a Voicenotes access token and saving local copies of your voice-note content. Keep VOICENOTES_TOKEN out of commits, logs, screenshots, and shared shell setup files, and sync notes into a private directory that is excluded from public repositories or broad backups when appropriate.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (2)

Missing User Warnings

Medium

Confidence: 91% confidence
Finding: The skill promotes syncing transcripts, summaries, and tags from voice notes into markdown files in the workspace without warning that this data may contain highly sensitive personal or business information. Writing such content into a general workspace can expose it to other tools, backups, version control, or unintended sharing.

Missing User Warnings

Medium

Confidence: 94% confidence
Finding: The documentation tells users to export and use a long-lived access token in environment variables and authenticated headers, but does not warn that the token is a credential that must be protected. Without guidance, users may leak it through shell history, dotfiles, logs, screenshots, or committed scripts, enabling unauthorized access to their voice notes and account data.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal