Notion
PassAudited by VirusTotal on May 3, 2026.
Overview
Type: OpenClaw Skill Name: notion-pages Version: 0.1.0 The skill bundle provides a legitimate integration for Notion using the ClawLink service. The instructions in SKILL.md guide the agent through a standard device-pairing and OAuth flow, including explicit safety rules such as requiring user confirmation for destructive actions and prohibiting the echoing of credentials. No evidence of data exfiltration, malicious execution, or obfuscation was found; the architecture relies on a third-party integration hub (claw-link.dev) which is a common pattern for managing API authentication in LLM agents.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The agent may be able to create or update Notion content after confirmation, so mistakes could affect workspace data.
The skill enables Notion write operations through ClawLink tools, but it also requires preview and user confirmation, making the behavior disclosed and purpose-aligned.
For writes or anything marked as requiring confirmation, call `clawlink_preview_tool` first, then confirm with the user. Execute with `clawlink_call_tool`.
Review previews carefully before approving Notion writes, especially bulk, destructive, or externally visible changes.
ClawLink and the connected tools may access or modify Notion data within the permissions the user approves.
The skill requires delegated OAuth access to the user's Notion account through ClawLink, which is expected for this integration but grants account-level authority according to the approved scopes.
ClawLink's hosted page runs the Notion OAuth flow — the user clicks through the Notion login and authorization screen.
Approve only the Notion permissions you are comfortable granting, verify the ClawLink connection page, and revoke access when it is no longer needed.
The actual Notion tool execution depends on an external plugin and service outside the instruction-only skill.
The skill depends on a separate ClawLink plugin that is not included in this artifact set. The install is user-directed and purpose-aligned, but users should verify the dependency.
Install the verified ClawLink plugin: `openclaw plugins install clawhub:clawlink-plugin`
Install the plugin only from the expected ClawHub source and check ClawLink's verification or source information before pairing accounts.
Requests and Notion-related data may pass through ClawLink as part of the integration flow.
Tool discovery and execution are mediated by the external ClawLink gateway rather than fixed local code, so Notion operations and related data depend on ClawLink's dynamic tool catalog.
ClawLink provides tools dynamically based on what the user has connected. You do not need to know tool names or schemas in advance.
Use this skill only if you trust ClawLink to mediate Notion access, and avoid approving access to workspaces or pages that should not be available through the integration.