feishu-calendar
Pass
Audited by Gen Agent Trust Hub on Mar 20, 2026
Risk Level: SAFEPROMPT_INJECTIONNO_CODE
Full Analysis
- [PROMPT_INJECTION]: The skill facilitates the ingestion of calendar event details (summaries and descriptions) which are controlled by external users, presenting a surface for indirect prompt injection. Ingestion points: feishu_calendar_event actions including list, search, and get. Boundary markers: No explicit delimiters or instructions to ignore embedded prompts are provided. Capability inventory: The skill has the capability to create and modify calendar events and manage attendees. Sanitization: No content validation or sanitization of ingested event data is described.
- [NO_CODE]: The skill package contains only markdown documentation and does not include any scripts, binaries, or executable code.
Audit Metadata