OpenClaw飞书消息读取

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed Feishu chat-reading helper, with sensitive attachment-download capability that users should control carefully.

Install only if you want the agent to inspect Feishu chat messages and retrieve specific attachments. Ask it to confirm before downloading images, files, audio, or video, keep searches narrowly scoped, and remove any downloaded copies when finished.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 90% confidence
Finding: The skill explicitly instructs the agent to download message attachments and media using message identifiers and file keys, but it does not require any user confirmation, purpose limitation, or warning that these resources may contain sensitive personal or corporate data. In a message-reading skill, attachment download materially increases privacy and data-exfiltration risk because files often contain more sensitive content than message previews, and the skill encourages retrieval as a normal follow-on action.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal