notion-enhanced-markdown-integration
Security checks across malware telemetry and agentic risk
Overview
This is a coherent instruction-only Notion integration, but it can read and change Notion workspace content using a Notion API key.
Install this only if you want the agent to access and potentially modify Notion pages shared with your integration. Use a dedicated Notion integration, limit which pages or databases are shared, protect the stored API key, and review any operations that update or replace content.
VirusTotal
VirusTotal findings are pending for this skill version.
Risk analysis
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The agent could change or replace Notion content when given a valid key and target page IDs.
The skill documents direct Notion write operations, including full markdown replacement. This is expected for a Notion management skill, but it can overwrite page content if used incorrectly.
curl -X PATCH "https://api.notion.com/v1/pages/{page_id}/markdown" ... "type": "replace_content"Use the skill only for workspaces and pages you intend the agent to edit, and review write or replacement operations before allowing them.
Anyone or any process that can read the stored key may be able to access or modify shared Notion pages through the integration.
The setup stores a Notion API key locally for later API calls. This is disclosed and necessary for the integration, but the key grants access to Notion resources shared with that integration.
echo "ntn_your_key_here" > ~/.config/notion/api_key
Use a least-privileged Notion integration, share only the needed pages or databases, protect the config file, and rotate the key if exposed.
Private Notion content or transcripts could be exposed to the agent during a task, and retrieved text should not automatically be treated as trusted instructions.
The skill can bring Notion page contents and meeting transcripts into the agent's working context. This is purpose-aligned, but those pages may contain sensitive or untrusted text.
Read page as markdown ... Add `?include_transcript=true` to include meeting transcripts
Only read pages and transcripts you intend to share with the agent, and treat retrieved Notion text as data rather than instructions.