知乎草稿写手 Zhihu Draft Writer

Security checks across malware telemetry and agentic risk

Overview

The skill is a disclosed Zhihu draft-writing automation, but users should understand it can control a logged-in browser, call a third-party AI endpoint, and create drafts in their account.

Install only if you are comfortable letting OpenClaw control a Chrome session logged into Zhihu and sending selected Zhihu page context to the documented AI endpoint. Use a dedicated browser profile if possible, review drafts manually before publishing, keep the API key revocable, and disable browser host control when finished.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 88% confidence
Finding: The runtime options instruct the workflow to generate content and save it to the Zhihu draft box, but they do not require any explicit user confirmation or warning that a state-changing action will occur. In an agent setting, this can lead to unintended account modifications, surprising the user and normalizing silent write actions against a connected third-party service.

VirusTotal

60/60 vendors flagged this skill as clean.

View on VirusTotal