Missing User Warnings
Medium
- Confidence
- 85% confidence
- Finding
- The skill documentation explicitly requires `FEISHU_APP_ID` and `FEISHU_APP_SECRET` but does not warn that these are sensitive credentials, how they should be stored, or that the skill will use them to access Feishu resources. This increases the risk that users will expose secrets in source files, logs, or prompts, leading to unauthorized access to Feishu Bitable data.
