Back to skill
Skillv0.0.2
ClawScan security
feishu-share-link · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 15, 2026, 9:00 AM
- Verdict
- Benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill is an instruction-only helper that generates Feishu dual-format share links and only reads a single workspace config file for a tenant domain — its requirements and behavior are coherent with its stated purpose.
- Guidance
- This skill is coherent and low-risk, but note it will read the file ~/.openclaw/workspace/TOOLS.md to find a Feishu Custom Domain. Before installing, inspect that file and avoid placing secrets or credentials in it. If the domain isn't present the skill will prompt you to provide it — you can instead paste the domain at request time. Because the skill is instruction-only and has no install steps, it won't add binaries or network endpoints, but as with any agent-invocable skill, avoid storing sensitive tokens in the suggested config file and verify generated links contain only the expected document tokens (not secrets).
Review Dimensions
- Purpose & Capability
- okName/description (generate both tenant-specific and root feishu.cn links) match the instructions and required actions. Asking for a custom domain and showing both links is coherent with improving link-opening behavior in the Feishu client.
- Instruction Scope
- okSKILL.md instructs the agent only to read ~/.openclaw/workspace/TOOLS.md for a Feishu Custom Domain and otherwise to ask the user; it does not request unrelated files, environment variables, or network endpoints. Reading that single config file is within scope for determining a tenant domain.
- Install Mechanism
- okInstruction-only skill with no install spec, no downloads, and no code files — minimal footprint and no installer risk.
- Credentials
- okNo environment variables, secrets, or config paths beyond the single TOOLS.md file are required. The requested local file is plausible for storing a tenant domain and does not appear to request excessive credentials.
- Persistence & Privilege
- okalways is false and the skill has no install actions that would persist or modify other skills or system settings. It does instruct the agent to read a file in the user's workspace only when generating links.