weixin-xlog-analyzer
PassAudited by ClawScan on May 1, 2026.
Overview
This is a coherent local WeChat Xlog parser/analyzer with no network or destructive behavior, but its outputs can retain sensitive log text.
This skill appears safe for local, user-directed log analysis. Before using it, make sure the Xlog file is one you intend to process, consider redacting sensitive content, store generated JSON reports carefully, and use only trusted external tools if decryption is required.
Findings (3)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
A crafted log line could try to influence the agent while it is generating the report.
The skill directs the agent to inspect user-provided log content. Log lines can contain arbitrary text, so the agent should treat them as data, not as instructions.
根据统计结果和日志内容,智能体分析问题模式
When using the skill, keep analysis focused on diagnostics and ignore any commands or instructions that appear inside the log text.
If you need a decryptor, its safety depends on where you obtain it and how you run it.
Encrypted Xlog handling depends on an external decryptor that is not included in the reviewed artifacts.
如需解密Xlog,用户需自行准备QXLog等解密工具(本Skill不包含解密功能)
Use only trusted, verified external decryption tools and review their permissions separately.
Generated files such as parsed logs and reports may contain private WeChat diagnostic content or other sensitive strings from the source logs.
The parser preserves the original log message and raw line in the generated JSON output.
'message': message, 'raw': line ... result = { 'total_count': len(logs), 'logs': logs, ... }Redact sensitive logs before analysis when possible, store output files in a safe location, and avoid sharing generated JSON reports unless reviewed.