Skills
skills/nicolaischmid/agent-inbox-tools/apple-mail-search/Snyk

apple-mail-search

Warn

Audited by Snyk on Feb 17, 2026

Risk Level: MEDIUM
Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

  • Third-party content exposure detected (high risk: 0.80). This skill directly reads Apple Mail's local "Envelope Index" SQLite database at ~/Library/Mail/V10/MailData/ and individual .emlx message files, which contain arbitrary external email content (untrusted, user-generated third-party data) that the agent will parse and display and could enable indirect prompt injection.
Audit Metadata
Risk Level
MEDIUM
Analyzed
Feb 17, 2026, 12:24 AM