feishu-wiki

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's scripts (notably scripts/list_wiki.py and scripts/read_bitable.py) call the Feishu open API (open.feishu.cn) and accept user-provided Feishu URLs or node tokens to fetch and display wiki and Bitable content, which is user-generated/untrusted content the agent reads and interprets at runtime.