linkfox-amazon-store-pricing
Pass
Audited by Gen Agent Trust Hub on May 30, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: Internal logic in scripts like
_spapi_pricing_common.pyandresponse_io.pyuses the Pythonsubprocessmodule to call auxiliary scripts within the skill's folder. These calls are used for dependency verification and modularizing data processing, using the system's Python executable and verified local paths. - [DATA_EXFILTRATION]: The skill transmits Amazon store data and access tokens to
https://tool-gateway.linkfox.com. As this domain belongs to the vendor (linkfox-ai), this represents standard operational behavior for proxying API requests to Amazon's Selling Partner API. - [CREDENTIALS_UNSAFE]: Gateway authentication relies on a
LINKFOXAGENT_API_KEY. The skill correctly prompts the user to manage this secret via environment variables, avoiding insecure hardcoding and following best practices for secret management.
Audit Metadata