Back to skill
Skillv1.0.0
VirusTotal security
baidu_search · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
ReviewMar 24, 2026, 10:16 AM
- Hash
- ac74d51dd421bf12419dfdfe16b9b055831cf6ff8e1dd620686712b76834b592
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: baidu-search-for-free Version: 1.0.0 The skill bundle provides functionality for Baidu searching and web scraping, which are high-risk network activities. A significant security vulnerability is present in `scripts/fetch_url.py`, where SSL certificate verification is explicitly disabled (`verify=False`), potentially exposing the agent to Man-in-the-Middle (MITM) attacks. While the code appears to align with its stated purpose and shows no clear signs of intentional malice or data exfiltration, the combination of arbitrary URL fetching and disabled transport security warrants a suspicious classification.
- External report
- View on VirusTotal