Skills
skills/liangdabiao/lark-workflow-feishu-cli/lark-workflow-crm/Socket

lark-workflow-crm

Warn

Audited by Socket on Apr 14, 2026

1 alert found:

Anomaly
AnomalyLOW
SKILL.md

该技能整体与“飞书CRM工作流”目的基本一致,主要操作也围绕飞书官方能力展开,未见明显恶意外传或隐蔽窃密迹象。但其依赖外部CLI且通过跨技能说明扩展信任边界,同时允许代理直接删改业务数据并发送消息,缺少明确的逐步确认约束,因此更适合判定为可疑/中风险而非恶意。

Confidence: 84%Severity: 62%
Audit Metadata
Analyzed At
Apr 14, 2026, 07:13 AM
Package URL
pkg:socket/skills-sh/liangdabiao%2Flark-workflow-feishu-cli%2Flark-workflow-crm%2F@d8b74995f43cdd5881fa5749bfd120beba6fadbf