apple-reminders
Pass
Audited by Gen Agent Trust Hub on Apr 18, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION]: The skill uses the
remindctlcommand-line utility for managing reminders on macOS. These operations are local to the user's machine and require standard OS-level permissions.\n- [EXTERNAL_DOWNLOADS]: The skill provides instructions to install theremindctltool using Homebrew from a specific third-party repository (steipete/tap/remindctl). This is a standard and transparent method for distributing macOS software.\n- [INDIRECT_PROMPT_INJECTION]: This skill presents an attack surface for indirect prompt injection as it processes external reminder data.\n - Ingestion points: Reminder titles and notes retrieved via
remindctlcommands listed inSKILL.md.\n - Boundary markers: Absent; reminder content is processed directly by the agent without specific delimiters.\n
- Capability inventory: Shell command execution of the
remindctlbinary.\n - Sanitization: Absent; the skill does not specify any filtering or validation for the content of the reminders.
Audit Metadata