slack
Warn
Audited by Snyk on Jun 29, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.75). The required runtime workflow is calling Slack Web API methods (e.g.,
slack::conversations::*,slack::chat::*,slack::search::messages) and returning Slack message text/history into the agent context; this includes outsider-authored free text from other Slack users (channel/DM participants) that the operating user did not author.
Issues (1)
W011
MEDIUMThird-party content exposure detected (indirect prompt injection risk).
Audit Metadata