wechat-summary
Pass
Audited by Gen Agent Trust Hub on Mar 9, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill uses a Python script (
fetch_article.py) to perform HTTP GET requests to themp.weixin.qq.comdomain. This is the primary and intended purpose of the skill to retrieve article content for summarization. The network activity is restricted to fetching content from the user-provided URL and does not involve downloading or executing unauthorized third-party code. - [COMMAND_EXECUTION]: The skill's
SKILL.mddefines a workflow that executes a local Python script (fetch_article.py) using a subprocess-style command. This is a standard mechanism for skill extensions and is used here to handle cases where the default web fetching tool fails due to anti-scraping measures. The input to the script is the user-provided URL, which is handled as a command-line argument. - [DATA_EXFILTRATION]: No evidence of data exfiltration was found. The script fetches article content and returns it to the agent's context for summarization. It does not access sensitive system files, credentials, or environment variables, and it does not send data to unauthorized external servers.
Audit Metadata