slack-webhook
Pass
Audited by Gen Agent Trust Hub on Apr 7, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No security issues were detected. The skill performs its stated function using standard tools and secure secret handling.
- [COMMAND_EXECUTION]: The skill uses
curlto interact with the Slack API. This is expected behavior for a webhook integration. - [CREDENTIALS_UNSAFE]: The skill correctly uses the
vm0_secretsconfiguration for the Slack Webhook URL, avoiding hardcoded secrets and ensuring they are managed by the host environment. - [EXTERNAL_DOWNLOADS]: The skill communicates with Slack's official API endpoints, which are well-known services. It does not download or execute untrusted external scripts.
Audit Metadata