notion-reader

The Notion Reader skill exhibits coherent purpose-capability alignment and a reasonable data flow for reading Notion pages with a user-provided token. Its trust posture hinges on the local handling of a sensitive token (token_v2) and the use of an unofficial internal API, which elevates risk due to potential API changes and credential exposure in config files/logs. It is best classified as SUSPICIOUS-to-MEDIUM risk: credential handling and non-official API usage raise concerns, but there is no explicit exfiltration or remote deployment observed. Recommend adding explicit encryption for stored tokens, clear logs/outputs sanitization, an option to disable local token storage, and a migration plan to the official Notion API with OAuth where feasible.