WeChat MP Assistant

Security checks across malware telemetry and agentic risk

Overview

This appears to be a real social media automation skill, but it needs review because it can schedule or publish content to external accounts without clear per-action safeguards.

Install only if you intend to let the skill operate connected social accounts. Before enabling it, confirm which platforms it can post to, use draft or dry-run mode first, require explicit approval for each live publish/sync/reply action, and avoid unattended schedules until you have verified the outputs and disable path.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 92% confidence
Finding: The skill advertises scheduled posting and multi-platform sync, which are capabilities that can modify external accounts or publish content, but it provides no warning, confirmation requirements, or safety boundaries. In an agent setting, this creates a real risk of unintended or unauthorized actions against connected social media accounts, especially if users assume the skill is limited to drafting and analysis.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal