wechat-auto-reply-skill-v5
ReviewAudited by ClawScan on May 16, 2026.
Overview
This is a disclosed WeChat auto-reply skill, but it needs broad screen/control permissions, runs persistently, can send messages automatically, and has an unpinned Windows npx fallback.
Install only if you are comfortable giving screen/control permissions and letting an agent send WeChat replies for you. Verify and pin Peekaboo/PeekabooWin instead of relying on npx, keep sensitive windows closed, use it only for low-risk contacts, watch the first runs, and stop/revoke permissions when finished.
Publisher note
20260516:微信窗口必须保持可见(不能最小化到任务栏) 联系人名称要和微信显示的完全一致 回复延迟约 10-15 分钟(含 10 分钟智能等待:如果你已经手动回复了,AI 就不再重复) 每次回复消耗约 ¥0.007-0.1
Findings (5)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The agent could send an incorrect or unwanted WeChat message as you if screenshot analysis or contact detection is wrong.
The skill directs the agent to run a recurring automation that can generate and send WeChat replies automatically after setup, without requiring the user to approve each message.
创建 WorkBuddy 自动化任务(每30秒检查一次)... 未回复(白色气泡)→ 生成回复并发送
Use only with low-risk contacts, test manually first, and prefer a confirmation-before-send mode if available.
Private information visible elsewhere on the screen may be captured, stored in temporary files, or analyzed by the agent.
The Windows capture method is documented as full-screen capture, so periodic monitoring may include sensitive content outside WeChat, not just the intended chat.
`peekaboo-win screen capture --output FILE` | 截取全屏
Keep only the intended WeChat window visible, close sensitive content before enabling the skill, and delete temporary screenshots after use.
A different or changed npm package could be downloaded and run, expanding trust beyond the reviewed skill artifacts.
If a local PeekabooWin binary is not resolved, the script falls back to running `npx peekaboo-win`, which may execute an unpinned external package at runtime.
# 4. 尝试 npx self._bin_path = "npx" self._use_npx = True ... cmd = ["npx", "peekaboo-win", "screen", "capture", "--output", path]
Install and verify PeekabooWin explicitly, pin versions or checksums where possible, and remove or disable the npx fallback.
The automation helper can view screen contents and control input, and administrator execution can increase the blast radius of mistakes.
The skill discloses broad OS permissions needed for screen capture and simulated input; these are purpose-aligned but powerful.
Permissions granted: Screen Recording + Accessibility ... 部分操作可能需要以管理员身份运行 PowerShell
Grant the minimum permissions needed, avoid administrator mode unless necessary, and revoke permissions when finished.
The skill may keep monitoring and later send replies or consume model credits until it is stopped.
The skill openly describes long-running monitoring and recurring automation, which is expected for auto-reply but should be noticed by the user.
启动后台监控... 每10分钟截图一次微信窗口 ... 创建 WorkBuddy 自动化任务(每30秒检查一次)
Set a clear stop time, confirm the background process and automation task are removed, and avoid broad stop commands that could terminate unrelated Python work.