Man-in-the-Middle (MitM)
botkit is vulnerable to man-in-the-middle MitM attacks. The library does not implement an app secret proof parameter when connecting to the Facebook API, allowing a malicious user who has a stolen app token to send messages from the chat bot's behalf...