Feishu Perm

Security checks across malware telemetry and agentic risk

Overview

This skill is a straightforward Feishu document-permission helper, but users should enable it only when they intend to manage access to shared files.

Install or enable this only if you want the agent to help manage Feishu document and file access. Before using add, remove, or full_access, verify the file token, recipient identity, member type, and permission level, and treat full_access as administrative delegation.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Vague Triggers

Medium

Confidence: 90% confidence
Finding: The activation description is broad enough to trigger on ordinary requests about sharing or collaborators, which can invoke a permission-management skill in situations where the user did not explicitly ask to modify access. In a sensitive domain like document permissions, overbroad activation increases the chance of unintended listing or changing of collaborators, especially if an agent infers actions from vague prompts.

Missing User Warnings

Medium

Confidence: 86% confidence
Finding: The documentation exposes add/remove/full_access permission-changing operations without prominently warning that these actions alter access control and may grant administrative capabilities to other users. In an agent setting, lack of strong warnings and confirmation guidance makes accidental privilege changes more likely, particularly because 'full_access' can delegate permission management to others.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal