moai-connector-notion

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill explicitly includes "WebFetch: Retrieve external data for sync" and an "Sync External Data to Notion" example that ingests external_data (item.link/item.name) so the agent will fetch and read arbitrary external web content, exposing it to untrusted third-party/user-generated input.