Send Slack messages securely through MCP with bot or user token modes.
This MCP tool is described as a minimal server for sending Slack messages; the materials show no required environment variables and no declared remote endpoint, but its function implies local server execution and interaction with Slack. The open-source MIT-licensed repository improves transparency, but low adoption, unknown maintenance status, and tension between the description and the 'no credentials' metadata make the overall posture one of caution.
The description explicitly says it supports both bot and user tokens, while the metadata says there are no required credentials/environment variables; this is inconsistent. If it actually uses Slack tokens, they are sensitive credentials, and user tokens in particular carry higher abuse potential, so token sourcing, storage, and least-privilege scope should be verified.
Although no remote endpoint is listed in the metadata, the stated function is to send Slack messages, which normally implies outbound transmission of message content to Slack APIs. The materials do not specify domains, data scope, or whether any third-party relay is involved, so the actual network destinations and transmitted content should be checked.
The system flags it as executes-code, meaning it runs an MCP server or related code locally. For an MCP tool this is a normal capability, and the materials do not show any request for unusual system privileges or clearly unrelated high-risk operations beyond sending Slack messages.
The materials do not state which local files or data it reads or writes; by function it will at least handle outbound message content, and if token-based modes are supported it may also touch credentials. There is no explicit sign of overbroad access, but the data access scope is under-documented and should be confirmed in code, including any access to local config, logs, or message history.
Positive factors are that there is a public GitHub repository and an MIT open-source license, giving it auditability. However, it comes from a third-party registry, has 0 stars, and its maintenance status is unknown, so trust remains limited. There is no clear red flag such as opaque closed-source exfiltration, but the source and dependency locking should be reviewed before use.
Copy the install command and let the AI configure it · recommended for beginners
No copy-paste install info for "mcp-notify" yet — see the docs or source repo.
Use mcp-notify to send this message to the #deployments channel: "Version v2.3 has been deployed successfully, and all core services are healthy."
The tool sends a deployment completion notification to the specified Slack channel.
Using user-token mode, send this message via mcp-notify to the project channel: "The homepage redesign was completed today, and payment flow optimization starts tomorrow."
The tool sends a project status message as the user with an AI signature.
Use mcp-notify to send this alert concurrently to #ops and #engineering: "Monitoring detected an elevated API error rate. Please investigate immediately."
The tool safely sends the same alert message concurrently to multiple Slack channels.
Integrate Slack via MCP tools and webhooks for collaboration and automation.
Let AI assistants read, search, and interact with Slack workspaces.
Send desktop notifications from MCP agents for task status and important updates.
Access Slack read-only data to search messages, threads, users, and channels.
Send phone push notifications through a configurable gateway for automated alerts.
Search Slack, read channel history, inspect users, and send messages safely.