ri
Security checks across static analysis, malware telemetry, and agentic risk
Overview
This is a coherent Feishu document tool, but it can read, replace, edit, delete, and upload content to Feishu documents, so it should be used only on documents the user intends to modify.
This skill appears purpose-aligned for Feishu document work. Before installing or using it, confirm the connected Feishu app has limited, appropriate document permissions, and ask the agent to confirm before replacing whole documents, deleting blocks, or uploading local files.
Static analysis
No static analysis findings were reported for this release.
VirusTotal
VirusTotal findings are pending for this skill version.
Risk analysis
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The agent could change or remove content from Feishu documents the connected account can access.
The skill documents actions that can overwrite an entire Feishu document or delete blocks. This is purpose-aligned for a document editor, but it is high-impact if invoked on the wrong document or without user review.
### Write Document (Replace All) ... Replaces entire document with markdown content ... ### Delete Block ... { "action": "delete_block", "doc_token": "ABC123def", "block_id": "doxcnXXX" }Use this skill only with explicit user intent, verify the doc_token and block_id before write/delete actions, and consider asking for confirmation before replace-all or deletion operations.
A connected Feishu app or bot with these scopes may be able to read and modify documents within its granted workspace access.
The skill requires Feishu document and drive permissions. These permissions are expected for Feishu document operations, but they grant access to workspace documents and files through the connected Feishu identity or bot.
Required: `docx:document`, `docx:document:readonly`, `docx:document.block:convert`, `drive:drive`
Grant the least Feishu permissions needed, limit the bot/app to intended workspaces or documents where possible, and audit the Feishu app permissions before use.
Newly created Feishu documents may automatically grant full access to the requesting user.
The skill intentionally uses the inbound sender identity to grant full_access on newly created documents. This is coherent with document creation, but it is a permission-affecting operation.
Always pass `owner_open_id` with the requesting user's `open_id` (from inbound metadata `sender_id`) so the user automatically gets `full_access` permission on the created document.
Ensure the sender identity is trustworthy and matches the intended document owner before creating documents with full_access.
Files chosen by the user or agent may be uploaded into a Feishu document visible to people with document access.
The skill can upload a user-selected local file or URL as a Feishu document attachment. This is aligned with the stated document workflow, but it can disclose local file contents if the wrong path is supplied.
### Upload File Attachment to Docx (from URL or local file) ... { "action": "upload_file", "doc_token": "ABC123def", "file_path": "/tmp/report.pdf", "filename": "Q1-report.pdf" }Upload only files the user explicitly selects, avoid broad or sensitive local paths, and confirm the target document before attaching files.