飞书文档文件夹摘要生成器

Security checks across malware telemetry and agentic risk

Overview

This skill appears to read Feishu folder documents to create a summary report, which matches its stated purpose.

Install only if you are comfortable letting the agent read the selected Feishu folder and reachable subdocuments to create one consolidated Markdown report. Avoid running it on folders with sensitive, confidential, or mixed-permission content unless you intend that content to be summarized together.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 89% confidence
Finding: This skill is designed to recursively read potentially large numbers of Feishu documents and compile their contents into a new report, but the description does not clearly warn about that scope or the data aggregation effect. That can lead users to authorize broader access than they realize, increasing the risk of unintended exposure of sensitive information across many documents in a single generated output.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal