Learning Cards (Spaced Repetition)
Security checks across static analysis, malware telemetry, and agentic risk
Overview
This is a coherent Feishu Bitable flashcard skill with disclosed read/write access and persistent study records, but no artifact-backed evidence of deception or malicious behavior.
This skill appears safe to install if you intend to use Feishu Bitable for flashcards, but you should authorize it only for the workspace/table you trust and avoid storing confidential learning material unless that Bitable is properly protected.
Static analysis
No static analysis findings were reported for this release.
VirusTotal
VirusTotal findings are pending for this skill version.
Risk analysis
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The skill can access and update Bitable records available through the authorized Feishu integration.
The skill relies on delegated Feishu OAuth permissions to read and write Bitable data; this is expected for the stated purpose, but it is still meaningful account/workspace authority.
User OAuth authorization — The user must grant Bitable read/write permissions when prompted
Authorize it only in the intended Feishu workspace and use a dedicated Bitable app/table for study cards where possible.
Incorrect table selection or unintended use could alter flashcard progress fields such as scores, streaks, and next review dates.
The skill instructs the agent to mutate Bitable records after quiz answers; this is core to progress tracking, but users should understand that study data changes automatically during the quiz flow.
After each answer, immediately update the card record
Confirm the target Bitable app/table before studying or generating cards, and keep backups if the card data is important.
Personal notes, book/course content, scores, and weak points may persist in the Feishu table and be reused by future interactions.
The design stores personal learner notes and progress state in Bitable for reuse across future study sessions; this is purpose-aligned persistent memory.
我的理解 | 学习者自己的理解和联想(可选填写)
Avoid putting confidential material into the study table unless the Feishu workspace permissions and sharing settings are appropriate.
The security and permission behavior depends partly on the configured Feishu plugin, not on code included in this skill.
The skill is instruction-only but depends on a separately installed Feishu plugin for its real capabilities; this dependency is disclosed and purpose-aligned.
The `openclaw-lark` plugin must be installed and connected to a Feishu tenant
Use the official OpenClaw Feishu plugin setup and review its permissions before authorizing access.