skills/acedatacloud/skills/slack/Snyk

slack

Warn

Audited by Snyk on May 6, 2026

Risk Level: MEDIUM

Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

Third-party content exposure detected (high risk: 0.90). The skill explicitly calls Slack Web API endpoints such as search.messages and conversations.list (in SKILL.md) which fetch user-generated Slack channel/DM content that the agent will read and could materially influence its actions.

Issues (1)

W011

MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata

Risk Level

MEDIUM

Analyzed

May 6, 2026, 12:51 PM

Issues

1