ClawHub

Notion Md

Security checks across malware telemetry and agentic risk

Overview

This is a coherent Notion helper skill, but users should protect the Notion API key and be deliberate about what content they upload.

Install only if you intend to let the chosen notion-md executable access your Notion integration. Use a least-privilege Notion token, share only needed pages with that integration, avoid uploading sensitive documents unless you want them stored in Notion, and protect or avoid the local API-key file.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (3)

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The documentation explicitly tells users to write the Notion API key to a plaintext file under ~/.config/notion/api_key, which can expose the credential to other local users, backups, shell tooling, or accidental disclosure. Because this is a long-lived API secret for a cloud service, insecure storage increases the chance of account or workspace compromise if the file is read or exfiltrated.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The documentation instructs users to create and append Notion pages from local files or stdin, which necessarily sends the provided content to Notion's external service, but it does not warn users about that data transfer. This creates a real privacy and data-handling risk because users may unknowingly upload sensitive local content, especially when piping data directly from files or shell commands.

Missing User Warnings

Medium
Confidence
96% confidence
Finding
The setup instructions tell users to place a Notion API key in an environment variable or a local config file without warning that the key is sensitive or advising secure storage practices. This is dangerous because API credentials can be exposed through shell history, shared environments, overly permissive file permissions, backups, or accidental commits, enabling unauthorized access to the user's Notion workspace.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal