feishu-cli-attendance

Warn

Audited by Socket on Jun 13, 2026

1 alert found:

Anomaly
AnomalyLOW
SKILL.md

SUSPICIOUS: the skill’s purpose, permissions, and data flow are mostly coherent for Feishu attendance queries, but it depends on a non-official personal CLI and forwards tenant app credentials to it. The main concern is medium supply-chain and credential trust risk, not clear malicious intent.

Confidence: 100%Severity: 60%
Audit Metadata
Analyzed At
Jun 13, 2026, 01:56 AM
Package URL
pkg:socket/skills-sh/riba2534%2Ffeishu-cli%2Ffeishu-cli-attendance%2F@b80dac8c59773c15d56ba7ab4a1d262686426fa2c69cbb3f2b16e638da08148a
Security Audit — socket — feishu-cli-attendance