Skills
skills/m1heng/clawdbot-feishu/feishu-drive/Gen Agent Trust Hub

feishu-drive

Fail

Audited by Gen Agent Trust Hub on Feb 16, 2026

Risk Level: HIGHPROMPT_INJECTIONCOMMAND_EXECUTIONNO_CODE
Full Analysis
  • Indirect Prompt Injection (HIGH): The skill creates a vulnerability surface by combining external data ingestion with destructive capabilities.
  • Ingestion points: The list and info actions in SKILL.md retrieve file names and metadata from Feishu Drive.
  • Boundary markers: Absent. There are no instructions or delimiters to prevent the agent from obeying instructions embedded in file names.
  • Capability inventory: The skill allows delete and move actions which provide high-impact side effects on user data.
  • Sanitization: Absent. No validation or filtering of external strings is mentioned in the tool specification.
  • Command Execution (LOW): While not executing shell commands, the tool enables significant state-changing operations (delete/move) within the Feishu environment.
  • No Code (INFO): The skill consists of documentation and tool definitions without executable script files.
Recommendations
  • AI detected serious security threats
Audit Metadata
Risk Level
HIGH
Analyzed
Feb 16, 2026, 05:43 AM