lark-base
Pass
Audited by Gen Agent Trust Hub on Mar 28, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill uses the lark-cli to perform legitimate business operations within the Lark Bitable environment. All command structures and parameter usages align with official platform capabilities for managing databases, records, and workflows.
- [SAFE]: Analysis of the instructions and examples shows no hardcoded credentials or unauthorized sensitive file access. Tokens and IDs (e.g.,
bascnXXXXXXXX,ou_xxx) are clearly used as placeholders for documentation purposes. - [SAFE]: There is no evidence of obfuscation or hidden logic. The markdown and reference files are transparent, well-structured, and provide clear operational guidance to the AI agent.
- [SAFE]: The skill does not perform external downloads or execute remote code from untrusted sources. It relies on a pre-installed system binary (
lark-cli) and specifies requirements in the metadata. - [SAFE]: The skill includes strong defensive patterns, such as mandatory reading requirements for complex field guides (formulas and lookups) and cautionary warnings for destructive operations like deleting tables or disabling advanced permissions.
Audit Metadata