wechat-publisher
Pass
Audited by Gen Agent Trust Hub on Apr 20, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill interacts with official WeChat API endpoints (api.weixin.qq.com), which is a well-known and expected service for the stated purpose.
- [SAFE]: Security instructions explicitly advise against hardcoding credentials, recommending the use of environment variables (WECHAT_APP_ID, WECHAT_APP_SECRET) instead.
- [SAFE]: The provided Python code for image generation utilizes standard libraries (Pillow) to process local data without any suspicious system calls or external dependencies.
- [SAFE]: No prompt injection patterns, obfuscation techniques, or persistence mechanisms were found in the skill metadata or instructional content.
Audit Metadata