yao-deepseek-crawler
Warn
Audited by Gen Agent Trust Hub on Jun 30, 2026
Risk Level: MEDIUMEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The script
scripts/setup_deepseek_bridge.mjsdownloads a browser extension archive from the GitHub releases of thejackwener/openclirepository. This repository is not associated with a trusted organization or well-known service. The script subsequently unzips and loads this extension into the browser to enable the core crawling functionality. - [COMMAND_EXECUTION]: Node.js implementation scripts use
spawnandexecFileSyncto execute system utilities and local scripts.scripts/setup_deepseek_bridge.mjsrunspkillto manage existing browser processes andunzipfor archive extraction.scripts/deepseek_batch_crawl.mjsspawns a crawler script from a path that can be dynamically controlled via command-line arguments or environment variables. - [PROMPT_INJECTION]: The skill presents an indirect prompt injection surface (Category 8) by ingesting untrusted results from DeepSeek AI search queries. Maliciously crafted responses from the search engine could attempt to manipulate the analysis logic or influence subsequent actions of the agent processing the output.
Audit Metadata