ClawHub

feishu-perm-help

Security checks across malware telemetry and agentic risk

Overview

This Feishu permission-management skill appears purpose-aligned, but it can change real document access and local OpenClaw configuration with too little user-facing safety guidance.

Review this skill before installing. Use it only with a Feishu app/account authorized to manage the intended documents, verify document IDs and user IDs before every permission change, prefer the least privileged role, and look for or request clear uninstall/rollback instructions for the OpenClaw configuration changes.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (2)

Missing User Warnings

Medium
Confidence
84% confidence
Finding
The README encourages users to add, view, and remove Feishu collaborators, including granting edit or full management access, but does not warn about the security sensitivity of these actions or the risk of accidental over-permissioning. In this skill context, the tool directly changes access control on live documents and folders, so omission of safety guidance makes misuse more likely and increases the chance of unauthorized disclosure, tampering, or privilege escalation.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The skill explicitly states that installation will automatically modify the user's OpenClaw configuration and restart the Gateway, but it does not present any warning, confirmation step, or rollback guidance. Silent persistence/configuration changes and service restarts are risky because they alter trusted local state and can unexpectedly enable privileged capabilities, especially a permission-management tool that can change document access.

VirusTotal

VirusTotal findings are pending for this skill version.

View on VirusTotal