wechatpay-deduction-service
Pass
Audited by Gen Agent Trust Hub on May 10, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill serves as a documentation assistant, providing official API references and integration workflows for WeChat Pay. It includes robust security instructions, such as prohibiting the use of file-writing tools and requiring explicit user consent for any AI-generated code references.
- [EXTERNAL_DOWNLOADS]: The skill references documentation and assets from official WeChat Pay domains (pay.weixin.qq.com, developers.weixin.qq.com) and the author's official GitHub repository (github.com/wechatpay-apiv3). These are recognized as trusted vendor resources used for legitimate technical support.
- [PROMPT_INJECTION]: No patterns of prompt injection, jailbreaking, or system prompt extraction were detected. The instructions prioritize user confirmation and adherence to official protocols.
- [DATA_EXFILTRATION]: The skill does not access sensitive local file paths (such as .ssh or .aws) and does not perform any unauthorized network operations. All example credentials provided in the documentation are clearly marked as placeholders.
Audit Metadata