glm-web-search

The skill is classified as suspicious due to the inherent risk of shell injection. The `SKILL.md` instructs the agent to execute shell commands like `mcporter call glm-search.webSearchPrime search_query="<搜索查询>"`. If the `<搜索查询>` (user-provided input) is not rigorously sanitized by the OpenClaw agent or the `mcporter` tool before being passed to the shell, it could lead to arbitrary command execution (RCE). While the skill's stated purpose is benign (web search), the method of execution introduces a significant vulnerability, classifying it as a risky capability without clear malicious intent from the skill developer.