apple-reminders
Pass
Audited by Gen Agent Trust Hub on Mar 12, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill initiates the installation of the
remindctlutility through a third-party Homebrew tap (steipete/tap/remindctl). - [COMMAND_EXECUTION]: The skill uses the
remindctlcommand-line tool to perform actions like adding, listing, and completing reminders. - [PROMPT_INJECTION]: The skill has a surface for indirect prompt injection because user-provided reminder titles and notes are passed directly to the command-line utility.
- Ingestion points: User-supplied text for reminder content.
- Boundary markers: Absent in the demonstrated commands.
- Capability inventory: Local command execution via the
remindctltool. - Sanitization: Not explicitly performed in the skill instructions.
Audit Metadata