Trust Assessment
notectl received a trust score of 86/100, placing it in the Mostly Trusted category. This skill has passed most security checks with only minor considerations noted.
SkillShield's automated analysis identified 1 finding: 0 critical, 1 high, 0 medium, and 0 low severity. Key findings include Potential Command Injection via CLI arguments.
The analysis covered 4 layers: Manifest Analysis, Static Code Analysis, Dependency Graph, LLM Behavioral Safety. All layers scored 70 or above, reflecting consistent security practices.
Last analyzed on February 14, 2026 (commit 13146e6a). SkillShield performs automated 4-layer security analysis on AI skills and MCP servers.
Layer Breakdown
Behavioral Risk Signals
Security Findings1
| Severity | Finding | Layer | Location | |
|---|---|---|---|---|
| HIGH | Potential Command Injection via CLI arguments The `notectl` skill is described as an 'AppleScript CLI' tool, implying it executes shell commands (e.g., `osascript`) to interact with Apple Notes. User-provided arguments for commands like `list`, `show`, `add`, `search`, and `append` (e.g., folder names, note titles, body text) are passed to the underlying CLI. If these arguments are not properly sanitized or escaped before being incorporated into the shell command, a malicious user could inject arbitrary shell commands, leading to remote code execution or unauthorized data access. Implement robust input sanitization and shell escaping for all user-provided arguments before they are passed to `osascript` or any other shell command. Use parameterized commands or libraries that handle escaping automatically where possible. For AppleScript, ensure that user input is properly quoted and escaped within the `osascript` command string to prevent breaking out of the script context. | LLM | SKILL.md:15 |
Scan History
Embed Code
[](https://skillshield.io/report/e04690d1139532b9)
Powered by SkillShield