Scan Report
0 /100
wechat-public-auto
微信公众号自动发文一站式技能 - 内容策划+润色+存草稿一条龙
This skill is a pure skill-orchestration layer with no executable code — it chains other skills (content-operations, humanizer, draft-saving) for WeChat article writing. No scripts, no shell access, no data exfiltration, and credential usage is scoped and necessary.
Safe to install
No action needed. The skill is safe to use as designed.
| Resource | Declared | Inferred | Status | Evidence |
|---|---|---|---|---|
| Filesystem | NONE | NONE | — | No file operations in any file |
| Network | NONE | NONE | — | No HTTP requests or network calls in any file |
| Shell | NONE | NONE | — | No shell or subprocess calls in any file |
| Environment | NONE | NONE | — | Environment variables referenced only as prerequisites; no iteration or harvesti… |
| Skill Invoke | NONE | READ | ✓ Aligned | SKILL.md: lines 1-6 — chains operations-expert, humanizer, and draft-saving skil… |
| Clipboard | NONE | NONE | — | No clipboard access |
| Browser | NONE | NONE | — | No browser automation |
| Database | NONE | NONE | — | No database access |
File Tree
3 files · 2.8 KB · 81 lines Markdown 2f · 75L
JSON 1f · 6L
├─
_meta.json
JSON
├─
README.md
Markdown
└─
SKILL.md
Markdown
Security Positives
✓ No executable code present — skill is purely a workflow orchestrator
✓ No shell, subprocess, or direct system calls
✓ No file read/write operations
✓ No network requests or data exfiltration
✓ No obfuscation (no base64, no eval, no obfuscated strings)
✓ WeChat credentials (WECHAT_APPID, WECHAT_APPSECRET) are declared prerequisites, not harvested
✓ No supply-chain risk since there are no dependencies or scripts
✓ No hidden instructions or prompt injection