Back to skill
Skillv1.0.1
VirusTotal security
ZeeLin Deep Research 深度研究 · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
ReviewMay 1, 2026, 5:41 AM
- Hash
- a279a87c47a7322ed0c8a7fee32fec4f0025a8a839af280363fd6e4792d9eef8
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: zeelin-deep-research Version: 1.0.1 The skill provides a complex integration with the ZeeLin Deep Research API (desearch.zeelin.cn), requiring an API key and using tools like curl, jq, and unzip. It is classified as suspicious due to significant shell injection risks in the provided instructions; the agent is directed to execute bash scripts that use unsanitized data from API responses (e.g., sessionId and title) directly in commands. Additionally, the logic for Feishu integration involves unzipping downloaded files and using sed to parse XML, which increases the risk of exploitation if the remote service or its output is compromised.
- External report
- View on VirusTotal