wechat-channel

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.80). The prompt contains examples that embed secrets/tokens directly in configs and curl commands (e.g., PADLOCAL_TOKEN, OPENCLAW_WEBHOOK_SECRET, "Authorization: Bearer YOUR_SECRET"), which would require the agent to insert actual secret values verbatim into generated requests/commands.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's Wechaty Bridge ingests arbitrary, untrusted WeChat user messages and forwards them to the OpenClaw Gateway (see scripts/wechat-bridge.js and SKILL.md forwarding to /webhook/wechat), so third‑party user content is read and can directly influence the agent's actions.