feishu-automation

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.90). The prompt includes concrete curl examples that embed app_id/app_secret and Authorization Bearer tokens inline (even if as placeholders), which encourages substituting real secrets directly into commands and would require the LLM to output those secret values verbatim if provided.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.80). The skill's MCP configuration template will run "npx -y @larksuiteoapi/lark-mcp mcp ..." (i.e. fetching and executing the remote npm package @larksuiteoapi/lark-mcp at runtime), which causes remote code to be retrieved and executed and is required for the skill's operation, so this runtime external dependency is a risk.