飞书任务管理增强版
v1.0.1飞书任务管理增强版 - 高级任务与清单管理工具。 **基础功能**(免费): - 创建、查询、更新任务 - 任务完成/反完成 - 创建和管理任务清单 **高级功能**(付费): - 子任务(Subtask)管理 - 高级筛选与批量操作 - 任务评论与讨论 - 重复任务模板 - 优先级标记 - 任务统计与报告 **...
⭐ 0· 59·0 current·0 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Benign
medium confidencePurpose & Capability
Name, description, and the actions described (create/list/get/patch tasks, subtasks, comments, tasklists, repeat rules) align with a Feishu task-management helper. The JSON payload examples and required fields match the stated features.
Instruction Scope
SKILL.md gives concrete API-like action payloads and parameter requirements and stays within task-management functionality. It references extracting current_user_id from message context (SenderId) and expects task GUIDs; this is appropriate for a messaging-integrated task tool. It does not instruct reading arbitrary files or exfiltrating unrelated data. Note: it refers to tool names (feishu_task_task, feishu_task_subtask, etc.) but does not define how those tools are provided.
Install Mechanism
Instruction-only skill with no install spec and no code files — lowest-risk install surface. Nothing is downloaded or written to disk.
Credentials
The skill declares no required environment variables or credentials. In practice, a Feishu-integrated tool normally requires credentials (app id/secret or platform-managed token). The absence of declared auth info is not necessarily malicious (the platform may supply connector credentials), but you should confirm how authentication will be provided and what scope those credentials have.
Persistence & Privilege
always is false and there is no request to modify agent/system-wide config. The skill does not request permanent presence or elevated privileges.
Assessment
This skill appears to be a straightforward Feishu task helper and contains only in-scope instructions. Before installing, confirm: (1) how the skill will authenticate to Feishu — ensure you or the platform will provide a scoped connector token (app id/secret) rather than pasting broad credentials into the skill; (2) that the feishu_task_* tools referenced are official/approved connectors and have only the permissions they need (task read/write, not broader org data); (3) whether your workspace/admin policies allow an external skill to create/update tasks. If you need higher assurance, ask the skill publisher for details on authentication and connector scope. If the platform supplies the connector, verify its scope and audit logs for actions performed by the skill.Like a lobster shell, security has layers — review code before you run it.
feishuvk971yzrn72hgj5shah8k5d5jvh83yvy9larkvk971yzrn72hgj5shah8k5d5jvh83yvy9latestvk971yzrn72hgj5shah8k5d5jvh83yvy9productivityvk971yzrn72hgj5shah8k5d5jvh83yvy9taskvk971yzrn72hgj5shah8k5d5jvh83yvy9
License
MIT-0
Free to use, modify, and redistribute. No attribution required.