notion-meeting-intelligence
Pass
Audited by Gen Agent Trust Hub on May 17, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: Comprehensive analysis of the provided instructions, templates, and example workflows confirms the skill is legitimate and performs expected meeting intelligence functions.
- [DATA_EXPOSURE]: The skill interacts with the user's Notion workspace to gather context (using
Notion:notion-searchandNotion:notion-fetch). This access is localized to the user's workspace via an official Notion MCP server at https://mcp.notion.com/mcp. - [PROMPT_INJECTION]: The skill ingests external data from Notion pages, which presents a surface for indirect prompt injection (Category 8).
- Ingestion points: Untrusted data enters the context via the
Notion:notion-fetchtool as described inSKILL.mdandevaluations/status-meeting-prep.json. - Boundary markers: Absent; the instructions do not specify delimiters or warnings to ignore instructions within the fetched data.
- Capability inventory: The skill has the ability to write back to Notion using
Notion:notion-create-pages,Notion:notion-update-page, andNotion:notion-create-comment. - Sanitization: No specific sanitization or validation of the content fetched from Notion is mentioned in the instructions.
Audit Metadata