wechat2md
Pass
Audited by Gen Agent Trust Hub on Mar 14, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill fetches HTML content and images from mp.weixin.qq.com. This is the primary function of the tool and targets a well-known service domain, which is treated as a safe operation.
- [COMMAND_EXECUTION]: The Python scripts utilize subprocess.run to execute the curl command for fetching web pages. The command is constructed using a list of arguments rather than a shell string, which prevents command injection vulnerabilities.
- [PROMPT_INJECTION]: The skill processes untrusted external content from WeChat articles. 1. Ingestion points: External URLs are fetched in wechat2md.py and wechat2md_v2.py. 2. Boundary markers: The output is structured as Markdown with frontmatter, though it lacks explicit safety delimiters. 3. Capability inventory: The skill can read from URLs and write to the local filesystem. 4. Sanitization: wechat2md_v2.py explicitly strips script and style tags during the HTML-to-Markdown conversion process.
Audit Metadata