Slack Member Fetch

Security checks across malware telemetry and agentic risk

Overview

This skill does what it says: it fetches Slack member lists, but the output can include sensitive employee profile details.

Install only if you are authorized to export Slack workspace or channel membership data. Use the least-privileged Slack app you can, grant email scope only when needed, protect the bot token, and treat JSON output files as sensitive because they may contain personal and role-related employee information.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (2)

Missing User Warnings

Medium

Confidence: 92% confidence
Finding: This skill fetches Slack member profiles and explicitly supports returning emails, titles, and other profile attributes, which are personal or sensitive organizational data. Without a clear warning in the description or usage notes, users may invoke it without understanding the privacy implications or the risk of exporting directory information broadly.

Missing User Warnings

Medium

Confidence: 94% confidence
Finding: The script intentionally retrieves and outputs Slack member profile data including email, real name, title, timezone, and role flags, and can also write that data to disk via --out. In the context of an agent skill, this creates a real privacy and data-exposure risk because sensitive directory information can be broadly exported without any minimization, warning, or consent checks.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal