wechat-publisher
Pass
Audited by Gen Agent Trust Hub on Feb 21, 2026
Risk Level: SAFE
Full Analysis
- [SAFE] (SAFE): All provided files under the
themes/directory are static JSON configurations used for visual styling (colors, fonts, spacing). They do not contain executable code or scripts. - [CREDENTIALS_UNSAFE] (INFO): The
config.default.jsonfile serves as a template for WeChat API credentials (APP_ID,APP_SECRET). While the file contains only placeholders, it indicates the skill relies on local plain-text storage for sensitive API keys. - [SAFE] (SAFE): The
package.jsonfile identifies standard dependencies for Markdown parsing (marked), HTML manipulation (cheerio), and building MCP servers (fastmcp). No suspicious or unverifiable packages were detected.
Audit Metadata