lark-im

SUSPICIOUS: The skill’s capabilities align with its stated Lark IM purpose, and its data flows appear aimed at official Lark messaging operations. The main risk is trust in the required third-party lark-cli binary, which handles Lark credentials and actions without install verification details in the skill; this is a significant supply-chain and credential-forwarding concern, but not confirmed malicious behavior.