notion

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt explicitly instructs the agent to ask the user for the NOTION_INTEGRATION_KEY and shows direct curl examples embedding it in Authorization headers, which requires the model to handle/include the secret verbatim and creates an exfiltration risk.