Aws Wechat Article Formatting

Security checks across malware telemetry and agentic risk

Overview

This skill is a local WeChat article formatter that reads article/theme files and writes HTML output, with no evidence of hidden network access, credential use, persistence, or destructive behavior.

Install this if you want a local Markdown-to-HTML formatter for WeChat public-account articles. Review output paths before running, and be aware that generic formatting phrases may activate this skill unless you clearly specify another formatting workflow.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 84% confidence
Finding: The trigger list includes broad, everyday phrases such as '排版', '格式化', '弄好看点', and '调整格式', which can cause the skill to activate in contexts the user did not intend. In an agent environment, overbroad routing can expose local article files to unintended processing or cause the wrong skill to run, increasing the chance of data handling mistakes and workflow confusion.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal