WeChat Article Typography

Security checks across malware telemetry and agentic risk

Overview

This is a text-only WeChat article formatting guide with an optional publish workflow, and its sensitive actions are visible and purpose-aligned.

Install only if you want a WeChat article formatting guide. Before running the example publish commands, confirm what local tools they invoke, where article text and images are uploaded, and which WeChat or third-party credentials those tools use.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 95% confidence
Finding: The skill includes a publishing workflow that renders content, generates images, and pushes a draft to an external platform, but it does not clearly warn that article text, metadata, and local image files will be sent to external tools or a WeChat publishing endpoint. This can lead users or downstream agents to exfiltrate unpublished content or media without explicit awareness or consent, especially in automated workflows.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal