ClawHub

solid-notion

Security checks across malware telemetry and agentic risk

Overview

This is a coherent Notion-management skill, but it can modify live Notion pages and stores a Notion token and local page copies.

Install only if you trust the external npm package and need agent-assisted Notion editing. Use a dedicated least-privilege Notion integration shared only with intended pages, prefer token stdin over command-line tokens, review page IDs and diffs before write/submit/new, use --dry-run where available, and keep or delete local SOLID_NOTION_HOME data according to the sensitivity of your Notion content.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Missing User Warnings

Medium
Confidence
82% confidence
Finding
The skill instructs users to run `write <page_id>`, which replaces page content in Notion, but does not prominently warn that this performs destructive remote modification of the live page. In an agent context, that omission increases the chance of unintended data loss or overwriting the wrong page, especially because subsequent `submit` publishing is encouraged as part of the normal workflow.

Missing User Warnings

Medium
Confidence
85% confidence
Finding
The `new` command creates remote Notion pages and may archive them during rollback, but the documentation presents this as a standard workflow without a prominent caution about live remote side effects. In an autonomous-agent setting, this can lead to unauthorized page creation, clutter, or accidental archival under the wrong parent/database if IDs are mis-specified.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal