Analyzing Slack Space And File System Artifacts
Guide forensic review of Slack workspace data and host filesystem artifacts when investigating compromise, insider risk, or post-incident evidence on a solo builder’s stack.
Overview
Analyzing Slack Space And File System Artifacts is an agent skill for the Ship phase that structures review of Slack workspace and filesystem artifacts for security investigation and hardening.
Install
npx skills add https://github.com/mukul975/anthropic-cybersecurity-skills --skill analyzing-slack-space-and-file-system-artifactsWhat is this skill?
- Skill slug targets Slack-space and filesystem artifact analysis in a cybersecurity skills collection
- Fits incident response and digital forensics workflows alongside other Anthropic cybersecurity skills
- Supports solo builders self-auditing collaboration leaks and local persistence after a suspected compromise
- Apache 2.0 licensed collection skill suitable for agent-guided structured review
- Use when you need methodical artifact paths rather than ad-hoc grep through Slack exports and disks
Adoption & trust: 1 installs on skills.sh; 14.9k GitHub stars; 1/3 security scanners passed (skills.sh audits); trending (+100% hot-view momentum).
What problem does it solve?
You suspect Slack or local disk artifacts hide evidence of compromise, but you lack a repeatable agent-guided procedure to collect and interpret them.
Who is it for?
Solo builders doing self-service incident triage or appsec review on Slack plus a developer machine or small server footprint.
Skip if: Enterprise IR with legal hold, chain-of-custody requirements, or regulated environments that need certified forensic tooling and consultants.
When should I use this skill?
Use when investigating compromise indicators or performing structured review of Slack workspace and host filesystem artifacts.
What do I get? / Deliverables
You get a structured artifact analysis workflow and documented findings you can turn into remediation tasks before or after shipping.
- Artifact inventory and timeline notes
- Remediation or hardening recommendation list
Recommended Skills
Journey fit
Canonical shelf is Ship security because artifact analysis supports pre-release hardening and incident response before you trust production access patterns. Security subphase matches filesystem and collaboration-tool artifact inspection typical of appsec reviews and breach triage—not feature development.
How it compares
Forensic artifact analysis skill in a security pack—not a Slack admin MCP integration or automatic malware sandbox.
Common Questions / FAQ
Who is analyzing-slack-space-and-file-system-artifacts for?
Indie developers and small teams investigating Slack and filesystem clues after suspicious activity or during a security review of their shipping stack.
When should I use analyzing-slack-space-and-file-system-artifacts?
In Ship security before launch when validating collaboration and disk exposure, or in Operate errors after alerts suggest token abuse or unauthorized workspace access.
Is analyzing-slack-space-and-file-system-artifacts safe to install?
Treat it as guidance that may instruct reading sensitive exports and disk paths; review the Security Audits panel on this page and run analysis only on copies with least-privilege access.
SKILL.md
READMESKILL.md - Analyzing Slack Space And File System Artifacts
Apache License Version 2.0, January 2004 http://www.apache.org/licenses/ TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION 1. Definitions. "License" shall mean the terms and conditions for use, reproduction, and distribution as defined by Sections 1 through 9 of this document. "Licensor" shall mean the copyright owner or entity authorized by the copyright owner that is granting the License. "Legal Entity" shall mean the union of the acting entity and all other entities that control, are controlled by, or are under common control with that entity. For the purposes of this definition, "control" means (i) the power, direct or indirect, to cause the direction or management of such entity, whether by contract or otherwise, or (ii) ownership of fifty percent (50%) or more of the outstanding shares, or (iii) beneficial ownership of such entity. "You" (or "Your") shall mean an individual or Legal Entity exercising permissions granted by this License. "Source" form shall mean the preferred form for making modifications, including but not limited to software source code, documentation source, and configuration files. "Object" form shall mean any form resulting from mechanical transformation or translation of a Source form, including but not limited to compiled object code, generated documentation, and conversions to other media types. "Work" shall mean the work of authorship, whether in Source or Object form, made available under the License, as indicated by a copyright notice that is included in or attached to the work (an example is provided in the Appendix below). "Derivative Works" shall mean any work, whether in Source or Object form, that is based on (or derived from) the Work and for which the editorial revisions, annotations, elaborations, or other modifications represent, as a whole, an original work of authorship. For the purposes of this License, Derivative Works shall not include works that remain separable from, or merely link (or bind by name) to the interfaces of, the Work and Derivative Works thereof. "Contribution" shall mean any work of authorship, including the original version of the Work and any modifications or additions to that Work or Derivative Works thereof, that is intentionally submitted to the Licensor for inclusion in the Work by the copyright owner or by an individual or Legal Entity authorized to submit on behalf of the copyright owner. For the purposes of this definition, "submitted" means any form of electronic, verbal, or written communication sent to the Licensor or its representatives, including but not limited to communication on electronic mailing lists, source code control systems, and issue tracking systems that are managed by, or on behalf of, the Licensor for the purpose of discussing and improving the Work, but excluding communication that is conspicuously marked or otherwise designated in writing by the copyright owner as "Not a Contribution." "Contributor" shall mean Licensor and any individual or Legal Entity on behalf of whom a Contribution has been received by the Licensor and subsequently incorporated within the Work. 2. Grant of Copyright License. Subject to the terms and conditions of this License, each Contributor hereby grants to You a perpetual, worldwide, non-exclusive, no-charge, royalty-free, irrevocable copyright license to reproduce, prepare Derivative Works of, publicly display, publicly perform, sublicense, and distribute the Work and such Derivative Works in Source or Object form. 3. Grant of Patent License. Subject to the terms and conditions of