feishu-sticker

The skill mostly does what it claims (upload/send Feishu stickers) but its declared metadata, runtime instructions, and file I/O/credential usage are inconsistent and incomplete — review before installing or providing credentials.

Key points to consider before installing or running this skill: - Credentials required but not documented: send.js requires FEISHU_APP_ID and FEISHU_APP_SECRET (loaded via process.env and ../../.env). Do not supply full-privilege production credentials until you audit the code. Prefer a dedicated, limited-permission Feishu app/account. - Missing/misleading metadata: the skill metadata declares no required env vars, but the code needs FEISHU credentials and will exit without them. Treat the SKILL.md as incomplete. - File I/O and persistence: the skill reads arbitrary files when you pass --file and will upload them to Feishu (intended behavior for stickers). It also writes token and image_key caches to a 'memory' directory outside the skill folder and may delete original GIFs located inside the sticker directory. Review and, if needed, change those paths to a safe sandbox before use. - Hard-coded path: find.js has a default STICKER_DIR pointing at /home/crishaocredits/.openclaw/... which is developer-specific; update STICKER_DIR or ensure it points to a directory you control. - Exfiltration risk: because the skill can upload arbitrary local files, a malicious or careless user-supplied invocation or compromised Feishu credentials could allow uploading sensitive local files. Only run it in a trusted environment and with credentials scoped to the minimum necessary. - Dependency/licensing: ffmpeg-static is used (GPL-3.0-or-later). That is expected for conversion but be aware of license implications if redistributing. Actionable steps: 1) Inspect and (optionally) modify send.js: change the .env path and cache locations to directories you control. Remove or review the code that deletes originals. 2) Create a Feishu app with least privilege and set FEISHU_APP_ID/FEISHU_APP_SECRET for that app only. 3) Run the tool in a sandbox/container so its disk writes are contained, and audit network traffic if you are concerned about unintended endpoints. 4) If you intend to publish or share, update SKILL.md and registry metadata to declare required env vars and explain cache file locations and deletion behavior. If you want, I can point out exact lines to change (cache paths, hard-coded STICKER_DIR, .env location) or produce a safe wrapper that confines its file I/O to a dedicated directory.