ClawHub

Notion API

v1.0.0

Manage Notion notes, pages, and data sources with a JSON-first CLI for search, read/export, write/import, append, and move operations. Use when working with Notion, organising notes, moving pages, triaging an inbox, or reading/writing page content.

6· 3k·12 current·12 all-time
byTristan Manchester@tristanmanchester
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name/description, required binary (node), and required credential (NOTION_API_KEY) align with a Notion API CLI. Declared primaryEnv is NOTION_API_KEY which is appropriate for this functionality.
Instruction Scope
SKILL.md instructs the agent to run the included node script for Notion operations and documents expected headers, rate limits, and workflows. All commands target Notion API operations (search, export-md, create-md, move, triage) and do not instruct reading or sending unrelated system data or reaching external endpoints beyond api.notion.com.
Install Mechanism
There is no install spec (instruction-only + included script). The script is bundled in the skill and no external downloads or package installs are requested, which is low risk.
Credentials
Registry declares NOTION_API_KEY only (appropriate). The script also accepts fallbacks NOTION_TOKEN, NOTION_API_TOKEN and will read ~/.config/notion/api_key if env vars are missing — these fallbacks are related to Notion auth but the fallback file path is not declared in required config paths. This is reasonable but worth noting (script may read a file in the user's home if env vars are absent).
Persistence & Privilege
always:false and disable-model-invocation:false (normal). The skill does not request persistent system-wide privileges or modify other skills' configurations.
Assessment
This skill appears to be what it claims: a Node-based CLI for the Notion API that requires a Notion API key. Before installing, ensure you provide a valid NOTION_API_KEY (or be aware the CLI will look for NOTION_TOKEN / NOTION_API_TOKEN fallbacks and ~/.config/notion/api_key). Review the bundled scripts if you want extra assurance (they run fetch against api.notion.com and read local files you pass or the fallback token file). Limit the integration token's permissions in Notion (share only the pages/databases the integration needs) and avoid giving it broader workspace access than necessary.

Like a lobster shell, security has layers — review code before you run it.

latestvk97btmysgwswb6562bknjqsqad80a7jn

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

🗂️ Clawdis
Binsnode
EnvNOTION_API_KEY
Primary envNOTION_API_KEY

Comments