Feishu Bitable Data Sync

Security checks across malware telemetry and agentic risk

Overview

This skill appears intended for Feishu/Bitable data syncing, but it exposes bulk create, update, and delete authority without enough scoping or user-control guidance.

Install only if you are comfortable giving the agent authority over the relevant Feishu/Bitable records. Use least-privilege credentials, restrict it to specific bases/tables, and require a dry-run summary plus explicit confirmation before any create, update, overwrite, or delete operation.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Vague Triggers

Medium

Confidence: 90% confidence
Finding: The trigger phrases are broad enough that ordinary requests about syncing or importing/exporting data could activate a skill that performs bulk record operations. In this context, the skill can read, create, update, and delete bitable records, so ambiguous activation increases the risk of unintended destructive or privacy-impacting actions.

Missing User Warnings

Medium

Confidence: 95% confidence
Finding: The skill documents powerful write and delete operations without a clear warning that using them can modify or remove user data. Because the skill is specifically designed for synchronization across tables and external sources, omissions around destructive effects can lead users to authorize actions that overwrite, duplicate, or delete records unintentionally at scale.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal