Apple Reminders Hardened
PassAudited by ClawScan on May 3, 2026.
Overview
This skill is a coherent Apple Reminders CLI wrapper, but users should notice that it can read and change personal reminders after macOS permission is granted.
This skill appears safe for its stated purpose if you trust the remindctl CLI. Before installing, review the external Homebrew package, grant Reminders permission only intentionally, and confirm exact reminder IDs or list names before approving edits, completions, renames, or deletions.
Findings (4)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If invoked on the wrong item, the skill could complete, rename, or delete reminders or lists.
The skill documents destructive CLI actions, including deletion with a force flag. This is purpose-aligned for a reminders-management tool and is balanced by an explicit confirmation guardrail, but users should understand it can remove reminders.
Delete by id: `remindctl delete 4A83 --force`
Only approve state-changing actions after checking the exact reminder IDs, list names, and requested changes.
Once permission is granted, the CLI can read and modify reminders available to the local macOS account.
The skill requires macOS privacy permission to access Apple Reminders. This is expected for the stated purpose, but it grants access to personal reminder data through the installed CLI.
macOS-only; grant Reminders permission when prompted.
Grant Reminders access only if you trust the installed remindctl binary and are comfortable letting the agent manage your reminders.
The behavior ultimately depends on the external remindctl package installed from Homebrew or source.
The skill depends on an external Homebrew tap rather than bundled reviewed code. This is disclosed and central to the skill, but the binary/package provenance is outside the provided artifacts.
Install (Homebrew): `brew install steipete/tap/remindctl`
Review the remindctl project and Homebrew tap before installing, and keep it updated from a trusted source.
Broad reminder queries may expose personal schedules, plans, and notes to the agent context.
The skill can retrieve reminder contents, including broad views such as all reminders. The artifact recognizes this sensitivity and instructs the agent to minimize scope.
Scope data access to what the user actually asked for: prefer `remindctl today`, `remindctl list Work`, or date-specific views over `remindctl all` unless the user explicitly requests broad access
Ask for narrow date ranges or lists when possible, and use full exports only when you explicitly need them.