How do I know if my Notion token is still valid?

You can run the /notion:validate or /notion:status commands within Claude Code to safely check the token's validity without exposing its value.

How can I revoke Claude's access to my Notion workspace?

Access can be revoked instantly by navigating to Notion Settings > Integrations > Connected Apps and selecting 'Disconnect' for the Claude Code integration.

Where are Notion MCP tokens stored locally?

Tokens are stored in your home directory at .claude/notion-mcp.local.md, a location specifically designed to be ignored by version control systems.

What permissions does the Notion MCP skill require?

It typically requires Read and Write scopes to interact with pages and databases, but it is intentionally restricted from performing permanent delete operations.

Notion MCP Security & Credential Management

Name: Notion MCP Security & Credential Management
Author: v1truv1us

byv1truv1us

0•

安全与测试

Secures Notion MCP integrations by providing automated validation hooks, credential storage best practices, and emergency response protocols.

The Notion MCP Security skill provides a comprehensive framework for protecting sensitive OAuth tokens and managing workspace credentials within Claude Code. It establishes core security principles for local token storage in hidden markdown files, implements pre-tool-use validation hooks to prevent accidental exposure, and outlines clear procedures for handling potential credential compromises. This skill is essential for developers who need to interact with Notion data while maintaining strict security standards, ensuring that access tokens remain private, correctly scoped, and easily revocable through the official Notion OAuth flow.

主要功能

01Detailed mapping of Notion OAuth scopes and permission levels

02Safe debugging protocols that prevent sensitive data leakage in logs

030 GitHub stars

04Automated pre-tool-use token validation to prevent invalid API calls

05Step-by-step compromise response plans and token rotation guides

06Secure local storage configurations using .gitignore-protected files

使用场景

01Hardening a Notion-Claude integration against accidental git commits

02Recovering and re-securing an integration after a suspected token leak

03Performing a security audit of Notion workspace permissions and roles

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add v1truv1us/plugin-marketplace mcp-security

For use in Claude.ai and ChatGPT

Download Skill