wechat-automation

SUSPICIOUS. The skill’s monitoring and UI-control behavior largely matches its stated WeChat automation purpose, and data is described as flowing to a local orchestrator rather than an attacker-controlled endpoint. The main security concern is install-trust inconsistency around wxauto v4 packaging, plus the inherently sensitive nature of granting an AI-guided agent access to private chats and UI automation capable of messaging actions.