Back to skill
Skillv1.0.0
VirusTotal security
Zhihu CLI · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 29, 2026, 5:27 AM
- Hash
- 2441cbd1c9dc9fea9efdbe1f4652cf257bfbb15a2acc4d5359ff0ba7b4411665
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: zhihu-cli Version: 1.0.0 The zhihu-cli skill documentation (SKILL.md) describes a tool that performs high-risk credential handling, specifically the automated extraction of authentication cookies from the Chrome browser and storing them in a local file (~/.zhihu-cookie). While these features are aligned with the stated purpose of interacting with the Zhihu platform, the automated extraction of browser data and the instructions for the agent to execute JavaScript via 'Browser Relay' for voting and following actions represent a significant security risk and potential for account misuse.
- External report
- View on VirusTotal