feishu-notify
Pass
Audited by Gen Agent Trust Hub on Mar 20, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill executes a local Python script
run.pyto initiate the notification process. This is a standard and intended implementation detail.- [DATA_EXFILTRATION]: The skill performs network requests to deliver notification cards to Feishu webhooks. Feishu is a well-known communication platform, and this activity is documented as the skill's primary function.- [PROMPT_INJECTION]: The skill accepts external content for message delivery. - Ingestion points: The
bodyparameter in the execution command inSKILL.md. - Boundary markers: No explicit delimiters are used for the message body.
- Capability inventory: Outbound network communication via webhooks.
- Sanitization: Input processing is managed by the internal
execute_skill_commandhelper function.
Audit Metadata