slack
Pass
Audited by Gen Agent Trust Hub on Apr 18, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill defines legitimate Slack management actions using a configured bot token. No hardcoded secrets, remote code execution, or persistence mechanisms are present.
- [PROMPT_INJECTION]: The skill provides the ability to read untrusted data from Slack channels, which creates a surface for indirect prompt injection. However, this is necessary for the skill's primary function and is treated as a low-risk exposure. Ingestion points:
readMessagesaction inSKILL.md. Boundary markers: Absent. Capability inventory: Slack message and pin management tools. Sanitization: Absent.
Audit Metadata