Description-Behavior Mismatch
Medium
- Confidence
- 88% confidence
- Finding
- The skill claims to automate Feishu workflows, but the documentation also instructs enabling inbound/private-message reading capabilities. That materially expands data access into user communications and increases privacy and abuse risk beyond a typical outbound automation scope, especially because no strong justification or consent boundaries are documented.
