Wechat Article Formatter

Security checks across malware telemetry and agentic risk

Overview

This is a coherent WeChat article preview and copy tool, with a privacy caveat around preview pages fetching image URLs during copy.

Reasonable to install if you need local WeChat article formatting and preview. Be careful with untrusted imported HTML or Markdown containing image URLs, especially localhost, private-network, or tracking URLs, because clicking copy in the preview may request those images from your browser.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (4)

Description-Behavior Mismatch

Medium

Confidence: 90% confidence
Finding: The copy pipeline automatically fetches image URLs and converts them to data URLs, causing the browser to make network requests to arbitrary image sources present in article content. This can leak user IP/addressing metadata, trigger unexpected requests to attacker-controlled hosts, and copy untrusted remote content into the exported article without clear user awareness.

Missing User Warnings

Low

Confidence: 77% confidence
Finding: The skill defaults to writing preview HTML into the local filesystem without an explicit warning that files will be created or modified. While expected for a preview workflow, this can still surprise users, overwrite artifacts, or leave sensitive article content in local directories unintentionally.

Missing User Warnings

Low

Confidence: 74% confidence
Finding: The skill requires opening the generated preview in a browser after only an interaction prompt, but it does not clearly explain the privacy and system implications of launching a local HTML page. Even local previews may execute embedded JavaScript, access browser storage, or expose article content to browser extensions and normal browsing context.

Missing User Warnings

Medium

Confidence: 94% confidence
Finding: Remote image fetching occurs silently, with no user-facing warning that copying the article may contact external servers. In a content-processing tool, article HTML may include attacker-chosen image URLs, so a simple copy action can become a tracking beacon or unintended outbound request, which is especially concerning in privacy-sensitive or internal environments.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal