Security audit

Slack Etiquette

Security checks across malware telemetry and agentic risk

Overview

This skill is a straightforward Slack etiquette guide for an already-authorized AI agent and does not add hidden access, code execution, persistence, or data handling.

Before installing, confirm the agent's Slack permissions, channel allowlists, and posting policy are configured separately. The skill itself is benign, but automatic replies and reactions can still create noise if the Slack integration is authorized too broadly.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 89% confidence
Finding: The skill description is broad enough to activate in many ordinary Slack-monitoring contexts, which can cause the agent to apply this skill opportunistically across channels and DMs. Because the skill directly influences agent posting behavior in shared workspaces, over-broad triggering increases the chance of unnecessary surveillance-like participation, unwanted acknowledgements, and message/reaction spam at organizational scale.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal