notion
Pass
Audited by Gen Agent Trust Hub on Feb 25, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns or security vulnerabilities were identified. The skill follows established security practices for secret management and API integration.
- [EXTERNAL_DOWNLOADS]: The skill uses
npm installin its installation scripts to fetch standard dependencies from the official NPM registry, which is a well-known and trusted service. - [COMMAND_EXECUTION]: The provided scripts (
notion-cli.js,setup-wizard.sh) are legitimate administrative and operational tools for the skill's intended purpose. - [CREDENTIALS_UNSAFE]: The documentation correctly instructs users to store sensitive integration tokens in a local
.envfile rather than hardcoding them within the skill code.
Audit Metadata