ClawHub

Feishu Block Ops

Security checks across malware telemetry and agentic risk

Overview

The skill appears purpose-built for Feishu document/table automation, but it needs Review because it can use local Feishu app secrets and delete document or table content without clear enough safety controls.

Review this before installing if the Feishu app has access to important workspaces. Use a least-privilege Feishu app, confirm which local config file contains the app ID and secret, and require explicit user confirmation or a backup before any block, row, or column deletion.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Missing User Warnings

Medium
Confidence
89% confidence
Finding
The skill includes code that reads Feishu app credentials from a local config file and immediately exchanges them for a tenant access token over the network, but it does not prominently warn that local secrets are being accessed and transmitted to an external service. In an agent-skill context, this can normalize credential use without explicit user consent and increases the risk of unintended secret handling or unauthorized document access.

Missing User Warnings

Medium
Confidence
78% confidence
Finding
The skill advertises destructive operations such as deleting blocks and table rows/columns but does not clearly warn about irreversible content loss or recommend backups/dry runs. In a document-editing automation context, this omission makes accidental mass deletion more likely, especially when combined with index-based APIs that are easy to misuse.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal