Google Keep

Security checks across malware telemetry and agentic risk

Overview

This Google Keep skill appears coherent and disclosed, but it stores a reusable token and can change or trash notes.

Install only if you are comfortable giving this tool access to your Google Keep notes. Use a Google App Password, review note IDs before running mutation commands, and delete ~/.config/gkeep/token.json or revoke the app password if you no longer want it to have access.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 83% confidence
Finding: The documentation exposes a destructive delete command without warning users about data impact, whether deletion is reversible, or whether confirmation is required. In a note-management skill, this increases the chance of accidental data loss through misuse, automation errors, or misunderstanding of 'delete' versus 'trash'.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal