Skills
skills/larksuite/cli/lark-whiteboard-cli/Gen Agent Trust Hub

lark-whiteboard-cli

Warn

Audited by Gen Agent Trust Hub on Apr 10, 2026

Risk Level: MEDIUMCOMMAND_EXECUTIONREMOTE_CODE_EXECUTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill relies on shell commands including node, npx, and lark-cli to perform diagram rendering, calculations, and uploads to Lark Suite.
  • [COMMAND_EXECUTION]: It specifically directs the agent to generate Node.js source files (e.g., diagram.gen.js) and execute them using node to handle the complex mathematical positioning required for certain diagram types like fishbone or flywheel charts.
  • [REMOTE_CODE_EXECUTION]: The workflow for generating these Node.js scripts is vulnerable to code injection. Templates provided in files such as scenes/flywheel.md and scenes/fishbone.md use simple string interpolation for user-provided labels (e.g., {{CENTER_TITLE}}). If a user provides a payload designed to escape the JavaScript string literal context, they can achieve arbitrary code execution within the Node.js process during the calculation phase.
  • [EXTERNAL_DOWNLOADS]: The skill fetches and executes the @larksuite/whiteboard-cli tool via npx. This is an official tool provided by the author (larksuite) and is recognized as a legitimate vendor resource.
Audit Metadata
Risk Level
MEDIUM
Analyzed
Apr 10, 2026, 11:41 AM