Skillv1.0.0

Static analysis security

feishu-skills · Deterministic local checks for risky code patterns and metadata mismatches.

Scanner verdict

ReviewApr 30, 2026, 5:33 AM

Summary: Detected: suspicious.dangerous_exec, suspicious.env_credential_access, suspicious.potential_exfiltration
Reason codes: suspicious.dangerous_execsuspicious.env_credential_accesssuspicious.potential_exfiltration
Engine: v2.4.5

Evidence

criticalfeishu-docx-download/extract.js:29

Shell command execution detected (child_process).

suspicious.dangerous_exec

criticalfeishu-docx-download/extract.mjs:32

Shell command execution detected (child_process).

suspicious.dangerous_exec

criticalfeishu-auth/auth.js:318

Environment variable access combined with network send.

suspicious.env_credential_access

criticalfeishu-auth/auth.mjs:320

Environment variable access combined with network send.

suspicious.env_credential_access

criticalfeishu-auth/send-card.js:124

Environment variable access combined with network send.

suspicious.env_credential_access

criticalfeishu-auth/send-card.mjs:126

Environment variable access combined with network send.

suspicious.env_credential_access

criticalfeishu-auth/token-utils.js:41

Environment variable access combined with network send.

suspicious.env_credential_access

criticalfeishu-auth/token-utils.mjs:43

Environment variable access combined with network send.

suspicious.env_credential_access

criticalfeishu-docx-download/download-doc.js:42

Environment variable access combined with network send.

suspicious.env_credential_access

criticalfeishu-docx-download/download-doc.mjs:44

Environment variable access combined with network send.

suspicious.env_credential_access

criticalinstall.js:65

Environment variable access combined with network send.

suspicious.env_credential_access

criticalinstall.mjs:67

Environment variable access combined with network send.

suspicious.env_credential_access

warnfeishu-auth/token-utils.js:64

File read combined with network send (possible exfiltration).

suspicious.potential_exfiltration

warnfeishu-auth/token-utils.mjs:66

File read combined with network send (possible exfiltration).

suspicious.potential_exfiltration

warnfeishu-drive/drive.js:353

File read combined with network send (possible exfiltration).

suspicious.potential_exfiltration

warnfeishu-drive/drive.mjs:321

File read combined with network send (possible exfiltration).

suspicious.potential_exfiltration

warnfeishu-image-ocr/ocr.js:99

File read combined with network send (possible exfiltration).

suspicious.potential_exfiltration

warnfeishu-image-ocr/ocr.mjs:93

File read combined with network send (possible exfiltration).

suspicious.potential_exfiltration

warnfeishu-quick-setup/quick-setup.js:93

File read combined with network send (possible exfiltration).

suspicious.potential_exfiltration

warnfeishu-quick-setup/quick-setup.mjs:95

File read combined with network send (possible exfiltration).

suspicious.potential_exfiltration