apple-notes
Pass
Audited by Gen Agent Trust Hub on Jun 27, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSDATA_EXFILTRATIONCREDENTIALS_UNSAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill interacts with the user's Apple Notes by executing the
noteCLI tool for management tasks such as creating, reading, and editing notes. - [EXTERNAL_DOWNLOADS]: Contains helper scripts that fetch synchronization components and documentation from the author's GitHub repository (
github.com/FradSer/apple-sync-kit) to facilitate the setup of a personal sync backend. - [DATA_EXFILTRATION]: Includes functionality to synchronize notes with a remote Cloudflare D1 backend. Note bodies are encrypted locally with AES-GCM before transmission, while titles and folder names are transmitted in plaintext as part of the intended listing functionality.
- [CREDENTIALS_UNSAFE]: Includes a deployment script that saves synchronization secrets and encryption keys to a local configuration file with restricted permissions (
0600), which is a standard method for managing service credentials locally.
Audit Metadata