apple-notes
Pass
Audited by Gen Agent Trust Hub on Mar 9, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill facilitates the installation of the 'memo' CLI tool from a third-party repository (antoniorodr/memo) using Homebrew or pip.\n- [COMMAND_EXECUTION]: The skill executes the 'memo' binary to perform CRUD operations and searches on Apple Notes.\n- [PROMPT_INJECTION]: The skill processes untrusted data from Apple Notes, creating an indirect prompt injection surface.\n
- Ingestion points: Note content retrieved via 'memo notes' and 'memo notes -s' commands in SKILL.md.\n
- Boundary markers: None identified in the skill instructions.\n
- Capability inventory: Command execution via the 'memo' CLI tool as described in SKILL.md.\n
- Sanitization: No sanitization or content validation mechanisms are documented.
Audit Metadata