Skills
skills/riba2534/feishu-cli/feishu-cli-perm/Gen Agent Trust Hub

feishu-cli-perm

Pass

Audited by Gen Agent Trust Hub on May 18, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [COMMAND_EXECUTION]: The skill leverages the Bash tool to execute feishu-cli commands. This enables the agent to perform administrative tasks such as adding/removing collaborators, updating public sharing settings, and transferring document ownership.
  • [EXTERNAL_DOWNLOADS]: The skill documentation references the feishu-cli tool hosted on GitHub (github.com/riba2534/feishu-cli). This is an external resource provided by the author of the skill for the purpose of interacting with the Feishu API.
  • [CREDENTIALS_UNSAFE]: The skill mentions that authentication credentials (App ID and App Secret) are read from ~/.feishu-cli/config.yaml. While this is a sensitive file path, it is used here as a standard local configuration mechanism for the CLI tool.
  • [DATA_EXPOSURE]: The skill allows the agent to read document collaborator lists and permission settings, which is the primary intended function for document management.
Audit Metadata
Risk Level
SAFE
Analyzed
May 18, 2026, 01:49 PM
Security Audit — agent-trust-hub — feishu-cli-perm