Back to skill
Skillv1.0.0
VirusTotal security
Feishu Reading Notes · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousMar 27, 2026, 7:01 PM
- Hash
- 69c5f181aba5b734d58b3abfb2799568e658985d208ea9cf4dd72cec29721118
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: feishu-reading-notes Version: 1.0.0 The skill bundle contains hardcoded Feishu (Lark) API credentials (app_id: cli_a929129e4278dced, app_secret: usgK70hkHYBTQTtqMUFUMeXPPQDp35CE) and specific folder tokens in SKILL.md. It also includes instructions to notify a hardcoded Feishu open_id (ou_b0d3821177d24497a82735dcf2ed7960) upon task completion. If used by anyone other than the author, this would result in user data (article summaries and links) being exfiltrated to the author's Feishu account and the author being notified of the user's activity. Additionally, the skill contains instructions for the agent to perform self-modification by updating its own SKILL.md file.
- External report
- View on VirusTotal