Manage Feishu document and file sharing, access permissions, and collaborators.
The material shows a Feishu permission-management skill focused on document/file sharing controls, which is a sensitive business operation, but it appears prompt-only with no standalone environment variables and no separately declared remote endpoints. Given the open-source source and very strong community adoption, the overall posture is closer to low-to-moderate risk; the main concern is its handling of permission changes and sensitive business identifiers such as document tokens and member IDs.
The material says there are no environment variables, but the README places the token directly in tool-call parameters and requires the Feishu `drive:permission` scope; this means it handles highly sensitive business tokens that can directly change document permissions, creating misuse risk if exposed in logs, prompts, or chat context.
No remote host is explicitly listed, but by its stated function the skill would necessarily interact with Feishu permission APIs to query and change access, carrying document/file tokens, member identifiers, and permission data. The material shows no red flag of sending data to unrelated third parties or hidden endpoints.
The system marks it as prompt-only, and the material does not describe spawning local processes, running scripts, installing dependencies, or invoking system commands; no code-execution surface is evident.
The skill can list, add, and remove collaborators, and can grant `full_access`, exposing member emails, user/group/department identifiers, and document permission metadata. This access scope is consistent with the stated function, but it covers sensitive collaboration and access-control data and should be guarded against mistakes and over-sharing.
The source is an open-source GitHub repository, and the system marks it as open-source with extremely strong community adoption (~377k stars), all of which materially lower supply-chain risk. License and maintenance status are unclear, which is a minor audit gap, but the available material shows no sign of closed-source exfiltration, suspicious install chains, or clear supply-chain red flags.
Copy the install command and let the AI configure it · recommended for beginners
Please install the "feishu-perm" skill from askskill: 1. Download https://raw.githubusercontent.com/openclaw/openclaw/main/extensions/feishu/skills/feishu-perm/SKILL.md 2. Save it as ~/.claude/skills/feishu-perm/SKILL.md 3. Reload skills and tell me it's ready
Please change this Feishu document so only team members can view it, block external access, and keep current collaborators' edit permissions.
Returns the permission update result, including visibility scope, external access restrictions, and collaborator permission changes.
Please review permissions for files in this Feishu folder, identify files that are publicly accessible or freely forwardable, and suggest fixes.
Outputs a list of risky files, with issue types and recommended permission-tightening actions.
Help me add two collaborators to this Feishu sheet: Zhang San can edit, Li Si can comment only, and disable link sharing.
Returns the collaborator assignment result and confirms that link sharing has been disabled.
Single tool feishu_perm for managing file/document permissions.
{ "action": "list", "token": "ABC123", "type": "docx" }
Returns: members with member_type, member_id, perm, name.
{
"action": "add",
"token": "ABC123",
"type": "docx",
"member_type": "email",
"member_id": "[email protected]",
"perm": "edit"
}
{
"action": "remove",
"token": "ABC123",
"type": "docx",
"member_type": "email",
"member_id": "[email protected]"
}
| Type | Description |
|---|---|
doc | Old format document |
docx | New format document |
sheet | Spreadsheet |
bitable | Multi-dimensional table |
folder | Folder |
file | Uploaded file |
wiki | Wiki node |
mindnote | Mind map |
| Type | Description |
|---|---|
email | Email address |
openid | User open_id |
userid | User user_id |
unionid | User union_id |
openchat | Group chat open_id |
opendepartmentid | Department open_id |
| Perm | Description |
|---|---|
view | View only |
edit | Can edit |
full_access | Full access (can manage permissions) |
Share document with email:
{
"action": "add",
"token": "doxcnXXX",
"type": "docx",
"member_type": "email",
"member_id": "[email protected]",
"perm": "edit"
}
Share folder with group:
{
"action": "add",
"token": "fldcnXXX",
"type": "folder",
"member_type": "openchat",
"member_id": "oc_xxx",
"perm": "view"
}
channels:
feishu:
tools:
perm: true # default: false (disabled)
Note: This tool is disabled by default because permission management is a sensitive operation. Enable explicitly if needed.
Required: drive:permission
Generate shareable code or text diffs for review and collaboration.
Automate OpenClaw nightly releases, branch maintenance, and forward-porting to main.
Debug Node.js apps with inspect, breakpoints, heap, and CPU profiling.
Audit and harden OpenClaw hosts for security and operational health.
List chats, review message history, and send iMessage or SMS from CLI.
Run Parallels smoke tests with Discord roundtrip verification across host and guest.
Read, edit, and write Feishu documents for faster cloud collaboration.
Manage files, folders, and storage in Feishu cloud drive.
Monitor Feishu messages, send updates, upload files, and run scheduled automations.
Let AI access Feishu knowledge bases and cloud docs for search and collaboration.
Navigate Feishu knowledge bases and surface relevant wiki pages and links.
Use Feishu spreadsheets as searchable long-term memory for AI agents.