lark-skill-maker

SUSPICIOUS. The purpose is coherent with Feishu/Lark automation, and the API destinations appear consistent with official OpenAPI use. However, the skill’s core dependency is an unverified `lark-cli` binary that also handles authentication, creating a high trust and credential-forwarding risk disproportionate to the documentation provided.