Skills
skills/advisorydz/wechat-daily-report-skill/wechat-daily-report/Gen Agent Trust Hub

wechat-daily-report

Fail

Audited by Gen Agent Trust Hub on Apr 30, 2026

Risk Level: HIGHEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTIONCOMMAND_EXECUTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The script scripts/setup_check.py clones the wechat-decrypt repository from https://github.com/ylytdeng/wechat-decrypt. This is a non-trusted third-party repository not affiliated with the skill author.
  • [REMOTE_CODE_EXECUTION]: The skill executes Python scripts within the downloaded wechat-decrypt directory (specifically main.py and decrypt_db.py) via subprocess.run. This represents a 'download then execute' pattern from an unverified source.
  • [COMMAND_EXECUTION]: In scripts/decrypt_wechat.py, the skill invokes the system C compiler (cc) to compile a binary from source code (find_all_keys_macos.c) at runtime on macOS platforms.
  • [PRIVILEGE_ESCALATION]: Documentation in scripts/decrypt_wechat.py and scripts/setup_check.py explicitly instructs the user to run the tool with administrative (Windows) or root (macOS) privileges. This is required to scan system memory for WeChat's decryption keys, which is a high-risk operation.
  • [DATA_EXPOSURE]: The skill is designed to access and read sensitive personal data, including local WeChat contact databases and private chat messages. While this is the stated purpose, the combination with untrusted external code execution significantly increases the risk of data compromise.
Recommendations
  • AI detected serious security threats
Audit Metadata
Risk Level
HIGH
Analyzed
Apr 30, 2026, 12:32 AM