youmind-wechat-article

SUSPICIOUS: the skill is mostly aligned with its stated WeChat-writing purpose and uses plausible official endpoints, but it combines broad automation, sensitive credential handling, unpinned dependency installs, and mandatory autonomous draft publishing. This is better classified as a high-risk productivity skill than malware; the main concern is real-world action and credential exposure through local toolchains rather than clear exfiltration or deception.