Back to skill

Security audit

feishuFindDoc

Security checks across malware telemetry and agentic risk

Overview

This Feishu file downloader is purpose-aligned, but it should be reviewed because downloaded file names can control the local save path.

Review before installing. Use least-privilege Feishu app credentials, run it only against trusted chats, choose a dedicated empty output directory, and avoid running it from sensitive folders until filenames are sanitized and writes are constrained to the selected directory.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (2)

Missing User Warnings

Medium
Confidence
81% confidence
Finding
The skill explicitly downloads files and the usage shows writing them to a local output path, but the description does not clearly warn that untrusted remote content will be written to disk. This can lead users to retrieve unexpected or malicious files into sensitive directories, increasing risk of accidental execution, overwrite, or unsafe handling.

Missing User Warnings

Medium
Confidence
88% confidence
Finding
The skill requires Feishu application credentials via environment variables but provides no warning about their sensitivity or safe handling. Users may expose these secrets in shell history, logs, screenshots, or shared environments, which could allow unauthorized access to Feishu APIs and associated data.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.