Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Feishu Chat Server API
v0.1.3Manage Feishu group chats through Feishu server APIs, including create, get details, list members, add members, remove members, and disband chats.
⭐ 0· 67·1 current·1 all-time
bywoden@wodenwang
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
The skill claims to manage Feishu chats and expects Feishu app_id/app_secret at runtime, which is appropriate. However registry metadata requires the 'uv' binary while the runtime examples call 'uvx' (different binary). The skill also does not declare FEISHU_APP_ID/FEISHU_APP_SECRET in its manifest even though SKILL.md references them as credential fallbacks. These mismatches reduce confidence that the declared requirements accurately reflect what will actually run.
Instruction Scope
SKILL.md instructs calls like `uvx --from git+https://github.com/wodenwang/feishu-extension-skills.git ... invoke <action> --args-json '<json>'`. That means the agent will fetch and execute code from a GitHub repo at runtime rather than using only the shipped skill bundle. The docs also show passing app_secret on the command line (exposed to shell history/process list). The skill instructs where to read credentials (explicit args, .local/feishu-extension-skills.json, or ENV), which is reasonable, but the dynamic fetching+execution of remote code combined with CLI-passed secrets is a notable risk.
Install Mechanism
The manifest provides a brew install for formula 'uv' (low-risk installer), but the runtime examples call 'uvx' and use a --from git+https source to pull the extension at invocation time. The install spec does not cover the dynamic git+https fetch; executing code pulled from a remote repository at runtime increases attack surface. Also the referenced brew formula name and the binary name used in examples don't match.
Credentials
The only credentials needed for Feishu operations are app_id/app_secret, which the SKILL.md documents as required in either arguments, a local config file, or environment variables — this is proportionate. However the manifest does not declare FEISHU_APP_ID/FEISHU_APP_SECRET even though the instructions reference them. Also the examples encourage passing secrets in command-line JSON, which risks exposure (shell history, process list).
Persistence & Privilege
The skill does not request always:true and is user-invocable only (good). However the agent is allowed to invoke the skill autonomously (default), and because the skill's instructions fetch and run remote code, autonomous invocation would increase blast radius. Consider limiting autonomous use until the external code provenance is verified.
What to consider before installing
What to check before installing:
- Confirm which CLI is required: the SKILL.md uses 'uvx' but the manifest/install references 'uv' — verify the correct binary and its origin.
- Inspect the GitHub repository (https://github.com/wodenwang/feishu-extension-skills) before use: the runtime examples pull and execute code from that repo (git+https). Running externally fetched code with your Feishu credentials could exfiltrate secrets.
- Avoid passing app_secret on the command line; prefer environment variables or a secured config file, and protect local config (.local/feishu-extension-skills.json).
- Verify the brew formula 'uv' is the intended, trusted package and whether it provides 'uvx' behavior; if not, the install spec is incomplete/misleading.
- If you need stronger assurance, ask the publisher for the exact code bundle the skill will execute (or include the code in the skill package) and ensure the agent runs it in a restricted environment. Until these issues are resolved, treat this skill as potentially risky and consider not enabling autonomous invocation.Like a lobster shell, security has layers — review code before you run it.
latestvk97casdvzm336pzp3gz0f4bdvs83t7ns
License
MIT-0
Free to use, modify, and redistribute. No attribution required.
Runtime requirements
💬 Clawdis
OSmacOS · Linux
Binsuv
Install
Install uv (brew)
Bins: uv
brew install uv