notion-common-errors

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The SKILL.md explicitly instructs runtime calls to third-party Notion endpoints (e.g., notion.databases.retrieve() and curl calls to api.notion.com and status.notion.so) so the agent will fetch and interpret user-generated Notion workspace/schema data which can materially change how it constructs requests and next actions.