MCP Slack Python
UnverifiedREPOminji337/mcp-slack-python
B
Catalogue entry updated 6 days ago
Auth postureNot probedno remote endpoint probed yet
Tools72 Write · 5 Read
Worst categoryWritegrade tracks the peak, not the average
Capability mix
Write 2Read 5
What it can reach
Ingests untrusted inputTouches secretsReaches networkRuns codeTouches filesChanges permissionsSends external commsPersistsDeletes dataMoves money
Exfiltration pathReads content an attacker can plant and can send data outward — a prompt-injection-to-exfiltration route.
Tools 7
slack_add_reactionslack_send_messageslack_get_messagesslack_get_thread_repliesslack_get_user_profile
View all 7 tools
Change history
No changes recorded since first scan. Watched servers surface a diff within the hour.
Recommended policy
slack_add_reactionrate limit
Read-only toolsallow
Full policy breakdown with enforcement rules →