Feishu Cli Export

Security checks across malware telemetry and agentic risk

Overview

This mostly looks like a Feishu document export helper, but it also includes an under-disclosed workflow that can upload local files into Feishu.

Review before installing. Use this skill only with a trusted `feishu-cli`, least-privilege Feishu credentials, and documents you are allowed to export. Do not let an agent run the import-file workflow unless you explicitly intend to upload that local file to Feishu; ideally keep import behavior in a separate skill.

SkillSpector

By NVIDIA

Vulnerability Patterns

MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Description-Behavior Mismatch

High

Confidence: 97% confidence
Finding: The skill is declared as export-only, but the documented "doc import-file" workflow adds a separate capability to upload local files into Feishu. That scope expansion can cause an agent to perform unintended data transfer from the local machine to a remote SaaS, which is materially riskier than a read/export operation and may violate user intent or data handling expectations.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal