granola-ci-integration
Automates Granola CI/CD workflows for processing meeting notes and integrating with development pipelines using Zapier and GitHub.
Install this skill
Security score
The granola-ci-integration skill was audited on Mar 3, 2026 and we found 16 security issues across 3 threat categories, including 1 high-severity. Review the findings below before installing.
Categories Tested
Security Issues
Direct command execution function call
| 62 | while ((match = actionPattern.exec(noteContent)) !== null) { |
Template literal with variable interpolation in command context
| 93 | ```yaml |
Template literal with variable interpolation in command context
| 128 | title: `Meeting Action: ${action.task}`, |
Template literal with variable interpolation in command context
| 129 | body: `From: ${{ github.event.client_payload.title }}\n\n${action.task}`, |
Curl to non-GitHub URL
| 227 | curl -X POST https://hooks.zapier.com/hooks/catch/YOUR_HOOK_ID \ |
Webhook reference - potential data exfiltration
| 34 | Zapier Webhook Triggered |
Webhook reference - potential data exfiltration
| 43 | ## Zapier Webhook Setup |
Webhook reference - potential data exfiltration
| 45 | ### Step 1: Create Webhook Endpoint |
Webhook reference - potential data exfiltration
| 145 | # Zapier Webhook Action |
Webhook reference - potential data exfiltration
| 224 | ### Test Webhook Endpoint |
Webhook reference - potential data exfiltration
| 226 | # Test Zapier webhook with sample data |
Webhook reference - potential data exfiltration
| 265 | | Webhook timeout | Large payload | Add processing delay | |
Webhook reference - potential data exfiltration
| 271 | - [Zapier Webhooks](https://zapier.com/help/create/code-webhooks) |
External URL reference
| 147 | URL: https://api.github.com/repos/your-org/your-repo/dispatches |
External URL reference
| 227 | curl -X POST https://hooks.zapier.com/hooks/catch/YOUR_HOOK_ID \ |
External URL reference
| 271 | - [Zapier Webhooks](https://zapier.com/help/create/code-webhooks) |