Back to skill
Skillv1.0.0
VirusTotal security
Feishu Ai Coding Assistant · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignApr 30, 2026, 6:19 AM
- Hash
- 2953db08f399f23e37697bfae3b15e8a99c2dc1a3601e52a57d34b8548340b94
- Source
- palm
- Verdict
- benign
- Code Insight
- Package: feishu-ai-coding-assistant (mcp) Version: 1.0.0 Description: 飞书 AI 编程助手 - 调用子 Agent 完成大型项目,支持 OpenCode、Claude Code、Codex 等编程工具 The package is a command-line interface and orchestration handler for a Feishu-based AI coding assistant. Its core logic in `src/index.ts` focuses on parsing user commands (such as help, list, install, and run) and returning formatted instructional strings or metadata for sub-agent creation. While the `skill.json` configuration requests extensive permissions (exec, read, write) to facilitate coding tasks, the provided implementation is a safe UI wrapper. A security oversight was identified in `publish.sh`, which contains hardcoded GitHub and ClawHub API tokens; however, this affects the developer's account security rather than the package's runtime safety for end-users.
- External report
- View on VirusTotal