Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
feishu-robot-interact
v1.0.0飞书群机器人互相通信能力。当机器人在飞书群聊中被其他机器人@时,解析消息内容,执行任务,并在执行前向开发者确认(首次)或根据记忆决定是否需要确认。适用于:(1) 机器人之间需要协作完成任务 (2) 多机器人工作流编排 (3) 分布式任务处理场景。
⭐ 0· 59·0 current·0 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
The skill claims to implement Feishu group robot communication, and the Python script implements message parsing, confirmation and local memory storage — that is coherent. However the registry metadata lists no required environment variables or credentials even though the code expects FEISHU_ROBOT_ID, FEISHU_DEVELOPER_ID and MEMORY_PATH. The SKILL.md also talks about executing tasks and replying to group chats, but the shipped script does not include any Feishu API calls or credentials to send messages. The lack of declared Feishu API/token requirements is disproportionate to the described purpose.
Instruction Scope
SKILL.md and references/config.md describe listening to Feishu events, asking developer confirmation and using OpenClaw memory; the script implements parsing and decision logic and reading/writing a local JSON memory file. It does not perform network I/O (no post/get to Feishu API) nor does it implement task execution — that must be provided by the integrator. There are small inconsistencies (SKILL.md mentions TOOLS.md while the repo has references/config.md). Overall instructions are scoped to message handling and confirmation, but they assume external wiring to actually send/receive messages and perform tasks.
Install Mechanism
This is an instruction-only skill with a single Python script and documentation; there is no installer or downloaded archive. No code is automatically executed during install. That is low-risk in terms of install mechanism.
Credentials
The skill metadata declares no required env vars or credentials, but the script reads FEISHU_ROBOT_ID, FEISHU_ROBOT_NAME, FEISHU_DEVELOPER_ID and MEMORY_PATH. The skill also claims to send confirmation messages and replies but does not declare or use any Feishu API token/secret — in practice those credentials are necessary to send messages and should be documented and restricted. The memory file is stored under a user home path and will be written to disk; that is expected but should be noted.
Persistence & Privilege
The skill does not request always:true, does not modify other skills, and only writes a local memory JSON file under the user's home directory (default path provided). That is a normal level of persistence for this functionality.
What to consider before installing
This skill implements local parsing and confirmation logic for Feishu robot messages but has several mismatches you should resolve before installing: (1) The package metadata declares no required env vars, but the code requires FEISHU_ROBOT_ID, FEISHU_DEVELOPER_ID and MEMORY_PATH — add these to the environment and the skill metadata. (2) The script does not include any Feishu API calls or any bot token/secret usage; you will need to wire message sending/receiving (and provide secure Feishu credentials) for it to function. (3) The skill writes a JSON memory file to the user home directory — ensure that path and file permissions are acceptable and that sensitive task contents are not inadvertently persisted. (4) Confirm provenance: the source/homepage is unknown; consider running the code in a sandbox, inspecting/adding explicit handling for Feishu auth tokens (and store them securely), and adding explicit metadata for required credentials before using in production. Finally, test the confirmation flow carefully to avoid automatic execution of sensitive tasks if a memory entry marks them as 'trusted'.Like a lobster shell, security has layers — review code before you run it.
latestvk9731j8jxgnp3ywe4fc74fhr5n83q3z0
License
MIT-0
Free to use, modify, and redistribute. No attribution required.