badgebot

The 'slack-lead-scanner' skill in SKILL.md automates lead enrichment and CRM synchronization by monitoring Slack messages and updating HubSpot. It is classified as suspicious because it requires access to multiple sensitive API tokens (Slack, Apollo, HubSpot) stored in the filesystem and performs automated PATCH operations on a HubSpot CRM based on natural language interpretation of Slack DM replies. This pattern introduces a risk of unintended or unauthorized data modification in the HubSpot portal (ID: 43856876) if the agent misinterprets user input or if the Slack communication channel is compromised.