feishu-memory-recall
v2.0.0Cross-group memory, search, and event sharing for OpenClaw Feishu agents
⭐ 0· 2.8k·30 current·30 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
high confidencePurpose & Capability
Name/description align with what the code does: it calls Feishu APIs to search/recall messages, generates digests, auto-discovers groups, and writes event logs. The operations in index.js map to the stated commands.
Instruction Scope
SKILL.md and index.js instruct reading ~/.openclaw/agents/main/sessions/sessions.json to auto-discover groups and writing to RECENT_EVENTS.md and memory/*.md. Reading the OpenClaw sessions file is sensitive (may contain other agent session metadata) and this path was not declared in the registry metadata. The skill also fetches full message contents from Feishu groups — expected for its purpose, but privacy-sensitive. Instructions are not overly broad otherwise and network calls go to the Feishu API only.
Install Mechanism
No install spec (instruction-only) which is low-risk. However the skill bundle includes JavaScript code and a package.json (dependencies commander, dotenv). Nothing is downloaded from arbitrary URLs. Risk is primarily from executing the included code, not an external installer.
Credentials
Registry metadata declared no required env vars, but SKILL.md and index.js require FEISHU_APP_ID and FEISHU_APP_SECRET (loaded from .env or process.env). The skill also reads HOME-based sessions.json (a config path) but the metadata lists no required config paths. This mismatch is an important omission: the skill needs Feishu credentials and access to agent session data to run.
Persistence & Privilege
The skill stores a cached tenant token (memory/feishu_token.json), a persistent group list (memory/active_groups.json), daily logs (memory/YYYY-MM-DD.md) and RECENT_EVENTS.md in the workspace. It does not modify other skills' configs or request always:true. Persisting tokens and logs is expected for this functionality but is a persistent storage footprint to be aware of.
What to consider before installing
This skill mostly does what it says (search/recall/digest across Feishu groups), but there are important inconsistencies and privacy implications you should consider before installing:
- Metadata omission: The package metadata claims no required env/config paths, but the code requires FEISHU_APP_ID and FEISHU_APP_SECRET and reads ~/.openclaw/agents/main/sessions/sessions.json. Those should have been declared. Treat that as a red flag for sloppy or incomplete packaging.
- Sensitive file access: sync-groups reads the OpenClaw sessions.json file to discover groups. That file may contain session details for other agents; only install if you trust the skill author and you are comfortable with it reading your agent session state.
- Credential scope: The skill exchanges FEISHU_APP_ID/SECRET for a tenant token and will fetch messages across tracked groups. Prefer giving an app with the minimal necessary scopes (read-only message scopes) and not a broadly privileged secret. Be cautious about using highly privileged credentials.
- Persistent data: The skill writes cached tokens and logs under memory/ and RECENT_EVENTS.md in the workspace. If that data is sensitive, plan for where those files live and who can read them.
- Suggested actions before use: review the included index.js and recall.js (they are readable), confirm FEISHU app permissions, run in an isolated environment or container first, and request the publisher update the registry metadata to list required env vars and the sessions.json config path. If you cannot verify the author or code, avoid providing FEISHU_APP_SECRET or running sync-groups on a system with other agents' sessions present.Like a lobster shell, security has layers — review code before you run it.
latestvk97c6cmp4f9rz5nxbvm0axhx9d817xz1
License
MIT-0
Free to use, modify, and redistribute. No attribution required.