Skills
skills/sundial-org/awesome-openclaw-skills/apple-reminders/Gen Agent Trust Hub

apple-reminders

Pass

Audited by Gen Agent Trust Hub on Feb 25, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill uses the remindctl CLI to perform operations such as creating, editing, and completing reminders on macOS.
  • [EXTERNAL_DOWNLOADS]: The documentation specifies installation from a third-party Homebrew tap (steipete/tap/remindctl) and the developer's GitHub repository.
  • [PROMPT_INJECTION]: The skill instructions create a surface for indirect prompt injection by interpolating user-provided text directly into command-line arguments.
  • Ingestion points: Dynamic content such as reminder titles, list names, and due dates are ingested from the agent context.
  • Boundary markers: Absent; the skill does not define delimiters or instructions to treat input as literal data.
  • Capability inventory: The binary executes sub-processes to interact with the Apple Reminders database for both read and write operations.
  • Sanitization: The instructions do not specify any input validation or shell-character escaping for the provided arguments.
Audit Metadata
Risk Level
SAFE
Analyzed
Feb 25, 2026, 11:28 PM