feishu-bitable-task-manager

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill directly fetches and parses arbitrary Feishu Bitable records from user-supplied TASK_BITABLE_URL / --task-url / --bitable-url (see scripts/bitable_task.ts and ParseBitableURL + RequestJSON calling /open-apis/bitable/v1/.../records/search), and then decodes and acts on those record fields as part of fetch/claim/update/create workflows, so untrusted user-generated table content could inject instructions indirectly.