slack
Warn
Audited by Snyk on Feb 17, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.80). The skill explicitly fetches and displays Slack user-generated content from user-provided Slack message/channel URLs via Slack API endpoints (conversations.replies, conversations.history, search.messages), so it ingests untrusted third-party messages as part of its workflow.
Audit Metadata