Wechat Send

Security checks across malware telemetry and agentic risk

Overview

This skill does what it says, but it can send real WeChat messages through a logged-in desktop session automatically and relies on fragile GUI/OCR matching without a final confirmation step.

Install only if you are comfortable letting an agent control your logged-in WeChat desktop app. Before use, require confirmation of the exact recipient and message, avoid sensitive content, and delete /tmp/wechat_send_clip.txt and /tmp/wechat_*.png after sending.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 94% confidence
Finding: The script sends a WeChat message immediately after its UI-based verification flow without requiring an explicit final user confirmation at send time. Because contact selection and verification rely on brittle GUI automation, OCR, similarity matching, fixed coordinates, and clipboard-driven input, a false match or UI state mismatch can cause unintended messages to be sent to the wrong recipient, which can leak sensitive information or trigger irreversible actions.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal