notion
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [Data Exposure & Exfiltration] (SAFE): The documentation instructs the user on how to store and retrieve an API key from a local configuration file (~/.config/notion/api_key). This is a standard practice for this type of integration and does not target system-level sensitive files or existing credentials.- [Indirect Prompt Injection] (LOW): The skill enables reading content from Notion pages and databases, which could contain instructions intended to influence the agent. This is inherent to the skill's purpose.
- Ingestion points: Data retrieved from api.notion.com (search, pages, blocks).
- Boundary markers: None identified in the documentation.
- Capability inventory: Documentation-only; no scripts or executable code provided with the skill.
- Sanitization: None identified.- [Remote Code Execution] (SAFE): No remote scripts or dynamic code execution patterns were found.
Audit Metadata