add-slack
Pass
Audited by Gen Agent Trust Hub on Mar 29, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONCREDENTIALS_UNSAFEPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: Fetches and merges Slack integration source code from the author's GitHub repository (
github.com/qwibitai/nanoclaw-slack.git). - [COMMAND_EXECUTION]: Uses
gitto manage the integration of new source code andlaunchctlto restart thecom.nanoclawservice on macOS to apply configuration changes. - [CREDENTIALS_UNSAFE]: Instructs the user to store Slack Bot and App tokens (
xoxb-...andxapp-...) in a local.envfile for authentication. This follows standard secret management practices for the platform. - [PROMPT_INJECTION]: As the skill enables the agent to process messages from external Slack channels, it introduces a surface for indirect prompt injection.
- Ingestion points: Incoming messages via the Slack Socket Mode connection.
- Boundary markers: Not explicitly defined in the setup instructions.
- Capability inventory: The skill integrates with the existing agent environment which includes file and service management capabilities.
- Sanitization: Handling of Slack message content is managed by the integrated
@slack/boltdependency and internal logic inslack.ts.
Audit Metadata