ClawHub

Feishu Setup Guide

Security checks across malware telemetry and agentic risk

Overview

This is a legitimate Feishu setup guide, but it steers administrators toward broad enterprise chat, document, calendar, contact, and OAuth access without enough least-privilege guardrails.

Review this before following it in a real workspace. Start with the minimal Feishu scopes needed for your actual use case, avoid batch-authorizing all scopes, and require admin approval plus privacy and audit review before enabling chat history, cross-chat search, file downloads, contact phone/email access, document write access, approvals, or send-as-user messaging.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (5)

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The guide instructs users to grant a very broad set of Feishu permissions, including read/write access to messages, calendars, documents, drive files, wiki content, approvals, and directory data such as phone numbers and email addresses, without any least-privilege guidance or warnings about privacy and blast radius. In a setup skill for an integration platform, this can normalize over-permissioned app deployment and materially increase the impact of compromise, misuse, or accidental data access across an organization.

Missing User Warnings

Medium
Confidence
91% confidence
Finding
This reference document explicitly recommends enabling a wide set of powerful Feishu tools, including reading chat history, cross-chat message search, downloading resources, and sending messages as a user identity, but it does not pair those capabilities with clear least-privilege guidance, consent/privacy warnings, or data-handling cautions. In a setup guide, this is dangerous because operators may copy the allowlist verbatim and unknowingly grant surveillance-grade or impersonation-capable permissions that exceed their actual business need.

Missing User Warnings

Medium
Confidence
90% confidence
Finding
The document explicitly states that OAuth tokens are stored for subsequent use, but provides no guidance on secure storage, encryption, retention, access controls, or user-facing disclosure. In a setup guide for a real Feishu integration, this omission can lead implementers to persist sensitive bearer tokens insecurely, increasing the risk of account takeover or unauthorized API access if tokens are exposed.

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The matrix documents access to chat history, thread replies, cross-chat search, and file/resource download under user identity, but presents them as recommended without any privacy, consent, retention, or least-privilege warning. In a setup guide, this can normalize over-broad data access and lead operators to enable surveillance-capable features without understanding the sensitivity of messages and attachments.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
Recommending batch authorization of all scopes encourages granting the plugin the full permission set regardless of actual need. This increases blast radius if the integration is misconfigured, abused, or compromised, and conflicts with the principle of least privilege for OAuth-based access.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal