wechatpay-medical-insurance-payment
Pass
Audited by Gen Agent Trust Hub on May 13, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill exclusively uses well-known and official domains for API interactions and documentation references, such as
api.mch.weixin.qq.comandpay.weixin.qq.com. All external resources originate from the verified vendor infrastructure. - [SAFE]: The agent instructions include strong security constraints, explicitly prohibiting the agent from using file modification tools (like
write_to_fileorreplace_in_file) and mandating that the agent only retrieves pre-defined official code examples rather than generating them from scratch. - [SAFE]: The provided Java and Go source code examples use appropriate placeholders for sensitive credentials (e.g., API keys, certificate paths) and demonstrate standard cryptographic practices for payment processing without any malicious behavior.
- [SAFE]: The skill follows a "zero-trust" protocol for interaction, requiring explicit user confirmation before providing sensitive implementation details or performing complex data retrieval.
Audit Metadata