granola-common-errors
Fail
Audited by Gen Agent Trust Hub on Mar 25, 2026
Risk Level: HIGHCOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill provides instructions to execute commands with elevated privileges using 'sudo' (e.g., 'sudo killall coreaudiod'), which presents a risk of unauthorized system modification.
- [COMMAND_EXECUTION]: The instructions include potentially destructive file system operations using 'rm -rf' on sensitive user paths, specifically '
/Library/Preferences/com.granola.*' and '/Library/Application\ Support/Granola'. - [COMMAND_EXECUTION]: There is a manifest inconsistency between the 'allowed-tools' configuration and the content of the skill. While the YAML frontmatter restricts Bash usage to 'pgrep' and 'ps', the troubleshooting steps instruct the agent to use 'system_profiler', 'tccutil', 'sudo', 'killall', 'rm', and 'brew', effectively attempting to bypass declared execution boundaries.
Recommendations
- AI detected serious security threats
Audit Metadata