imsg

The provided manifest describes a legitimate macOS CLI for interacting with Messages.app that requires high privileges (Full Disk Access, Automation) to perform its functions. The manifest contains no direct signs of malware, network telemetry, or obfuscated payloads. However, the combination of broad local read access and the ability to send arbitrary files/messages creates a meaningful data-exfiltration and automation-abuse risk. Before granting the requested privileges or deploying in sensitive environments, review the implementation (source or binary), verify the Homebrew tap’s provenance, and ensure interactive confirmations or policy controls prevent unattended scripted misuse.