Notion Integration

Security checks across malware telemetry and agentic risk

Overview

This is a straightforward Notion integration that uses your Notion API key to search, query, and create pages in Notion.

Install this only if you want an agent to access Notion through your integration token. Use a least-privilege Notion integration, share only the pages or databases needed, and confirm the destination and content before asking the agent to create pages.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Lp3

Medium

Category: MCP Least Privilege
Confidence: 90% confidence
Finding: The skill declares use of an environment variable and clearly requires outbound access to the Notion API, but it does not declare corresponding permissions. This creates a transparency and policy-enforcement gap: users or the hosting platform may not realize the skill can access secrets and make network requests, reducing informed consent and weakening sandbox controls.

Missing User Warnings

Medium

Confidence: 93% confidence
Finding: The manifest exposes a content-writing capability via notion_create_page, but there is no visible disclosure or warning that the skill can create persistent external content in the user's Notion workspace. If invoked without strong confirmation or policy constraints, an agent could write unwanted, misleading, or sensitive data into Notion, causing integrity and privacy issues.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal