linkfox-amazon-store-catalog

Fail

Audited by Snyk on Jul 16, 2026

Risk Level: CRITICAL
Full Analysis

CRITICAL E006: Malicious code pattern detected in skill scripts.

  • Malicious code pattern detected (high risk: 0.90). Code intentionally sends Amazon access tokens and store identifiers to an external gateway (tool-gateway.linkfox.com) and persists full API responses to disk, which exposes credentials/data to a third-party service — high risk of data-exfiltration (no obfuscated backdoor or remote-exec was found).

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

  • Third-party content exposure detected (high risk: 0.75). Required runtime path calls Amazon SP-API via developerProxy_get()/call_api() and then serializes the returned JSON (proxy/catalogItem/catalogItems/categories) into stdout and/or writes it for later use, so outsider-authored free text from the remote API response is ingested into the agent’s LLM context.

Issues (2)

E006
CRITICAL

Malicious code pattern detected in skill scripts.

W011
MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata
Risk Level
CRITICAL
Analyzed
Jul 16, 2026, 08:08 AM
Issues
2