feishu-cli-export

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly fetches and ingests user-generated Feishu cloud documents, wikis, and media via feishu-cli commands (e.g., "feishu-cli doc export <document_id>", "feishu-cli wiki export <node_token>", and "doc media-download") and then reads the exported Markdown and images (using the Read tool) as part of its workflow, so untrusted third-party content could indirectly inject instructions that influence agent actions.