Skills
skills/nkchivas/openclaw-skill-feishu-doc/feishu-doc/Gen Agent Trust Hub

feishu-doc

Pass

Audited by Gen Agent Trust Hub on Mar 3, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [PROMPT_INJECTION]: The skill creates a surface for indirect prompt injection by processing external content from cloud documents.
  • Ingestion points: The agent retrieves document data through the 'read' and 'list_blocks' actions specified in 'SKILL.md'.
  • Boundary markers: There are no instructions for the agent to treat document content as untrusted data or use specific delimiters to separate it from system commands.
  • Capability inventory: The skill provides powerful actions such as 'write', 'update_block', and 'delete_block', which could be misused if the agent obeys instructions embedded within a retrieved document.
  • Sanitization: There is no documented process for sanitizing or filtering document content before it is presented to the agent's context.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 3, 2026, 08:05 AM