feishu-cli-import

Warn

Audited by Socket on May 11, 2026

1 alert found:

Anomaly

AnomalySKILL.md

LOW

AnomalyLOW

SKILL.md

该技能的文档导入目的与大部分能力基本一致，但其核心执行面建立在非官方第三方 feishu-cli 之上，并要求将飞书应用凭据交给该 CLI。再叠加 raw GitHub pipe-to-shell 安装、默认权限授予与所有权转移，整体应判为可疑而非确认恶意。

Confidence: 88%Severity: 62%

Audit Metadata

Analyzed At

May 11, 2026, 09:08 AM

Package URL

pkg:socket/skills-sh/riba2534%2Ffeishu-cli%2Ffeishu-cli-import%2F@548ae93b169a66cc93214f18b19c3f38a7f5f7e4