feishu-cli-search

Warn

Audited by Socket on Apr 12, 2026

1 alert found:

Anomaly

AnomalySKILL.md

LOW

AnomalyLOW

SKILL.md

该技能的功能范围与“搜索飞书内容”基本一致，但核心能力建立在第三方 feishu-cli 之上，且该 CLI 负责获取和使用 User Access Token。未见明确恶意或异常外传端点，因此不属于确认恶意；但存在明显的供应链与凭证转发风险，整体应判为 SUSPICIOUS。

Confidence: 80%Severity: 68%

Audit Metadata

Analyzed At

Apr 12, 2026, 06:38 PM

Package URL

pkg:socket/skills-sh/riba2534%2Ffeishu-cli%2Ffeishu-cli-search%2F@ab25dcf1ac71ecb592f4fcbe9c0b5e851d9267b3