hermesclaw-wechat-multi-agent

SUSPICIOUS: the skill's core behavior is mostly consistent with a WeChat multi-agent router, and data flows target the official iLink API, but the trust model is weak. It relies on an unpinned curl|bash installer from a personal repo, reads raw gateway credential files, patches third-party configs, and sets up persistent background services; these are proportionate enough to avoid a malware label, but they create meaningful security risk.