Skill Trust Decision

feishu-mcp

Name: feishu-mcp Trust Review Report
Item: feishu-mcp
Rating: 45
Author: ClawSafe

飞书MCP集成技能文档中存在硬编码凭证泄露（appSecret明文暴露），可能引导用户将敏感信息写入配置文件，存在凭证外泄风险

Install decision first Source: Manual upload Scanned: Apr 3, 2026

Files 1

Artifacts 2

Violations 0

Findings 3

Most direct threat evidence

Critical

硬编码凭证泄露

appSecret 'BiL8CymBwxiA998MXxvUKbN23RhPsxAg' 和 appID 'cli_a926728f3e38dcba' 以明文形式直接写在 SKILL.md 公开文档中，任何获取此技能的用户都能查看和复制这些凭证

SKILL.md:22

Why this conclusion was reached

1/4 dimensions flagged

Pass

Declared vs actual capability

Declared resources and inferred behavior are broadly aligned.

Review

Hidden execution and egress

2 lower-risk artifacts were extracted and still need context.

Block

Attack chain and severe findings

The report includes 0 attack-chain steps and 2 severe findings.

Review

Dependencies and supply chain hygiene

Dependency information is incomplete, so supply-chain confidence stays limited.

What drove the risk score up

硬编码凭证泄露 +35

appSecret 'BiL8CymBwxiA998MXxvUKbN23RhPsxAg' 明文暴露在公开文档中

引导用户存储明文凭证 +15

要求用户将 appSecret 写入 ~/.openclaw/openclaw.json 配置文件

缺少凭证安全声明 +5

文档未警告凭证的敏感性和安全存储方式

Most important evidence

Critical

硬编码凭证泄露

appSecret 'BiL8CymBwxiA998MXxvUKbN23RhPsxAg' 和 appID 'cli_a926728f3e38dcba' 以明文形式直接写在 SKILL.md 公开文档中，任何获取此技能的用户都能查看和复制这些凭证

SKILL.md:22

从文档中删除所有硬编码凭证，改用占位符如 '<YOUR_APP_SECRET>' 并添加获取方式的说明

High

引导用户写入明文凭证

SKILL.md 指导用户将 appSecret 直接写入配置文件 ~/.openclaw/openclaw.json，这种做法增加了凭证泄露风险

SKILL.md:21

建议使用环境变量读取凭证，而非直接在配置文件中明文存储

Medium

缺少凭证安全警告

文档未包含任何关于凭证保管安全性的警告或最佳实践说明

SKILL.md:1

添加安全警告：此配置文件应妥善保管，避免提交到版本控制系统

Declared capability vs actual capability

Filesystem Pass

Declared NONE

→

Inferred NONE

SKILL.md 仅包含配置说明文档，无文件读写代码

Network Pass

Declared READ

→

Inferred READ

文档说明 MCP 工具使用飞书 OpenAPI 进行文档操作

Shell Pass

Declared NONE

→

Inferred NONE

无 shell 命令执行代码

Suspicious artifacts and egress

Medium External URL

https://feishu-openai-mcp-proxy.bytedance.net/mcp

SKILL.md:21

Medium External URL

https://xxx.feishu.cn/docx/ABC123def

SKILL.md:121

Dependencies and supply chain

There are no structured dependency warnings.

File composition

1 files · 126 lines

Markdown 1 files · 126 lines

Files of concern · 1

SKILL.md Markdown · 126 lines

硬编码凭证泄露 · 引导用户写入明文凭证 · 缺少凭证安全警告 · https://feishu-openai-mcp-proxy.bytedance.net/mcp · https://xxx.feishu.cn/docx/ABC123def

Security positives

技能结构简单，仅为配置文档，无执行代码

无 shell 命令执行能力

无网络请求发起代码

无文件系统写入操作代码

无环境变量遍历或凭证收割行为