configure
Pass
Audited by Gen Agent Trust Hub on Mar 25, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill executes local TypeScript scripts (
login-qr.ts,login-poll.ts) using thebunruntime. These scripts are located in the plugin's installation directory and are used to handle the OAuth-like login flow. - [EXTERNAL_DOWNLOADS]: The skill interacts with
https://ilinkai.weixin.qq.com/, which is the official WeChat iLink AI platform, to retrieve login QR codes and poll for authentication status. - [COMMAND_EXECUTION]: Uses
npx qrcode-terminalto display the QR code in the user's terminal. This involves the standard Node.js package executor. - [DATA_EXFILTRATION]: Manages authentication tokens and configuration in
~/.claude/channels/wechat/credentials.json. This is consistent with the skill's primary purpose of setting up a communication channel.
Audit Metadata