pnote
Warn
Audited by Gen Agent Trust Hub on Mar 7, 2026
Risk Level: MEDIUMEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTIONDATA_EXFILTRATIONCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The
pnote skills pullcommand downloads external files from the vendor's cloud service (promptnoteapp.com) and stores them in the local filesystem. - [REMOTE_CODE_EXECUTION]: The skill facilitates the delivery and potential execution of remote code by downloading 'skills' (which typically contain AI agent instructions and executable bash blocks) to a directory where they are automatically loaded by the host agent environment.
- [DATA_EXFILTRATION]: The
pnote skills push <dir>command allows the agent to upload the contents of arbitrary local directories to a remote server, which could be leveraged to exfiltrate sensitive files if the agent is manipulated into targeting sensitive paths. - [COMMAND_EXECUTION]: The skill provides the agent with the ability to execute the
pnoteCLI with arbitrary user-provided arguments, granting it control over all tool functionalities including authentication and data synchronization.
Audit Metadata