feishu-doc

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly fetches and ingests user-generated Feishu (Lark) content via its APIs (see SKILL.md and index.js with lib/docx.js, lib/sheet.js, lib/bitable.js and lib/wiki.js), and the agent is expected to read/interpret that content as part of readDoc/resolveDoc/writeDoc/appendDoc workflows — so untrusted third-party doc/wiki/sheet content could influence subsequent actions.