Notion CLI – Command Line Interface based access to Notion for your agent
PassAudited by ClawScan on May 1, 2026.
Overview
This is a coherent Notion CLI skill, but installing it involves external code and a Notion API key that can read and change shared workspace content.
Before installing, review the external GitHub repository and npm dependencies, create a narrowly scoped Notion integration, share only the specific pages or databases needed, and require explicit confirmation before any update, archive, delete, append, or comment action.
Findings (4)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
You would be running code from an external repository before giving it access to your Notion workspace.
The skill relies on cloning and installing external Node.js code that is not included in the reviewed artifact set.
git clone https://github.com/FroeMic/notion-cli cd notion-cli npm install npm run build npm link
Review the repository, package dependencies, and install scripts before running npm install or npm link.
Anyone or any agent process with this key can access the Notion pages and databases shared with the integration.
The skill requires a Notion integration secret and uses the permissions granted to that integration.
Set `NOTION_API_KEY` environment variable... Copy the Internal Integration Secret... Share any pages/databases you want to access with the integration
Create a dedicated Notion integration, share only the pages/databases needed, and rotate the key if it may have been exposed.
If used carelessly, the agent could change, archive, delete, or publicly add comments to workspace content that the integration can access.
The command set includes Notion write, archive, delete, append, and comment-creation actions.
notion pages update... notion pages archive... notion blocks append... notion blocks update... notion blocks delete... notion comments create
Use read-only/search commands by default and require explicit user confirmation before running mutating or destructive commands.
Retrieved Notion content could influence the agent's responses or expose private workspace information in outputs.
The skill retrieves Notion pages, blocks, and comments that may contain private workspace data or untrusted instructions written by other users.
Search across your workspace... Work with blocks... List comments on a block
Treat Notion page and comment contents as data, not instructions, and avoid sharing outputs that contain sensitive workspace information.