Knowledge Capture

Security checks across malware telemetry and agentic risk

Overview

This skill is a straightforward Notion documentation helper, but users should be careful because it can store conversation content in Notion.

Install only if you want an agent to create or update Notion pages from supplied discussions. Use a least-privilege Notion integration token, target a specific database, review generated content before writes, and avoid uploading secrets, regulated data, or confidential transcripts unless the Notion workspace permissions and retention rules are appropriate.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (2)

Missing User Warnings

Medium

Confidence: 93% confidence
Finding: The skill explicitly states it will create or update Notion pages, but it does not clearly warn users that invoking it may modify external workspace data using their credentials. This can lead to unintended writes, overwriting existing content, or disclosure of sensitive discussion material into a third-party system without informed user consent.

Missing User Warnings

Medium

Confidence: 95% confidence
Finding: The skill references a Notion API token and uploads conversation-derived content, but it does not warn about credential sensitivity or the privacy implications of transmitting potentially confidential transcripts, meeting notes, or interview content to Notion. In practice, this omission increases the risk of token mishandling and inadvertent exposure of sensitive business or personal data in an external SaaS platform.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal