ClawHub

Feishu Send Media

Security checks across malware telemetry and agentic risk

Overview

This Feishu media skill is purpose-aligned, but it can automatically copy local files and escalate failed sends into base64 transmission or Feishu Drive upload without clear confirmation or cleanup.

Review before installing. Use it only when you are comfortable with an agent sending selected local files through Feishu. Before each send, confirm the exact file path and recipient, allow Feishu Drive fallback only when you explicitly want cloud storage/link sharing, and delete staged workspace copies after sensitive transfers.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Rogue AgentSelf-Modification, Session Persistence
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The skill explicitly instructs sending local files to Feishu users or chats, but it provides no requirement to warn the user that local data will be transmitted to an external service. That omission increases the risk of unintended disclosure of sensitive local files, especially because the skill is framed as a generic media-transfer workflow and encourages direct use of absolute local paths.

Missing User Warnings

Medium
Confidence
97% confidence
Finding
The fallback logic automatically retries transmission, converts images to base64, and even uploads files to Feishu Drive without requiring renewed user approval. This is dangerous because a failed direct send could silently escalate into broader or more persistent third-party storage, increasing the chance of privacy violations and unintended data retention.

Session Persistence

Medium
Category
Rogue Agent
Content
# Extract filename from source path
filename=$(basename "/source/path/to/file.png")

# Copy to workspace (overwrite if exists)
cp -f "/source/path/to/file.png" "~/.openclaw/workspace/${filename}"

# Verify copy succeeded
Confidence
91% confidence
Finding
write if exists) cp -f "/source/path/to/file.png" "~/.openclaw/workspace/${filename}" # Verify copy succeeded if [ ! -f "~/.openclaw/workspace/${filename}" ]; then echo "ERROR: File copy failed"

VirusTotal

VirusTotal findings are pending for this skill version.

View on VirusTotal