Skills
skills/sundial-org/awesome-openclaw-skills/notion-2/Gen Agent Trust Hub

notion-2

Pass

Audited by Gen Agent Trust Hub on Mar 21, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [PROMPT_INJECTION]: The skill possesses an indirect prompt injection surface.
  • Ingestion points: The skill retrieves content from external sources via notion-cli page get and notion-cli db query commands as documented in SKILL.md.
  • Boundary markers: There are no instructions or delimiters in the documentation that direct the agent to ignore or isolate instructions found within the content retrieved from Notion.
  • Capability inventory: The skill allows the agent to create pages, append blocks, and modify database schemas using the notion-cli tool (SKILL.md).
  • Sanitization: The documentation does not describe any validation, filtering, or sanitization processes for the external content before it is processed by the agent.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 21, 2026, 01:00 PM