WechatSync
Security checks across malware telemetry and agentic risk
Overview
This is a disclosed publishing helper for syncing articles to selected platforms, with no hidden or unrelated behavior found in the submitted skill artifact.
Install only if you trust the WechatSync npm package and Chrome extension. Confirm the exact article file and target platforms before syncing, prefer dry-run or draft review where possible, and remember that selected articles and images will be uploaded to the chosen third-party platforms using your logged-in browser sessions.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
66/66 vendors flagged this skill as clean.