slack
Pass
Audited by Gen Agent Trust Hub on Mar 12, 2026
Risk Level: SAFEPROMPT_INJECTIONNO_CODE
Full Analysis
- [PROMPT_INJECTION]: The skill processes external Slack messages which presents a surface for indirect prompt injection. 1. Ingestion points: Message content retrieved via readMessages action in SKILL.md. 2. Boundary markers: None present to distinguish external message data from instructions. 3. Capability inventory: Includes actions like sendMessage, editMessage, deleteMessage, and pinMessage. 4. Sanitization: No evidence of validation or sanitization of message content.
- [NO_CODE]: The skill does not contain any executable scripts, providing only a markdown-based interface definition.
Audit Metadata