Skip to content

DEV Community

Michael Kayode Onyekwere

Posted on Apr 26

AGENTSCORE-2026-0016: `@jtalk22/slack-mcp` risk change detected

#security #mcp #npm #supplychain

@jtalk22/slack-mcp updated from 4.1.2 to 4.2.0. Score changed 90/100 to 80/100 (-10). Risk: LOW to MODERATE. 1 finding.

Package

Name: @jtalk22/slack-mcp
Version: 4.1.2 to 4.2.0
Score: 90/100 to 80/100
Risk: LOW to MODERATE

Findings

[HIGH] command_injection: Potential command injection: shell execution with template literal input

Full advisory: AGENTSCORE-2026-0016

Verdict API: curl https://agentscores.xyz/api/verdict?npm=%40jtalk22%2Fslack-mcp

Auto-published by AgentScore MCP security monitoring.

Top comments (0)

Subscribe