feishu-docs
Pass
Audited by Gen Agent Trust Hub on Feb 25, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill suggests installing the
feishu-doc-clipackage globally via npm to provide the necessary tooling for document retrieval. - [COMMAND_EXECUTION]: The skill uses the
Bashtool to executefeishu-doccommands, enabling search and read operations on the local system. - [PROMPT_INJECTION]: The skill is subject to potential indirect prompt injection because it retrieves and processes content from external documentation servers.
- Ingestion points: Data enters the context from external Feishu/Lark documentation URLs via the
feishu-doc readcommand. - Boundary markers: There are no explicit delimiters or system instructions to ignore embedded commands within the fetched documentation content.
- Capability inventory: The skill has the capability to execute shell commands through the
Bashtool. - Sanitization: External content is passed directly to the agent's context without sanitization or filtering of potential instructions.
Audit Metadata