linkfox-echotik-list-product

Pass

Audited by Gen Agent Trust Hub on Jul 16, 2026

Risk Level: SAFE
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill provides instructions to download an auxiliary onboarding component from the vendor's official domain (agent-files.linkfox.com) in the event that required local configuration is missing. This is a documented part of the vendor's service delivery.
  • [COMMAND_EXECUTION]: Includes a Python script (scripts/echotik_list_product.py) used to interface with the EchoTik API. The script handles parameters passed as JSON and manages local output files for data persistence and caching.
  • [CREDENTIALS_UNSAFE]: Appropriately utilizes environment variables (LINKFOX_AGENT_API_KEY) for authentication, ensuring that sensitive API keys are not hardcoded within the skill's source files.
  • [DATA_EXFILTRATION]: Network operations are confined to official vendor endpoints (tool-gateway.linkfox.com and skill-api.linkfox.com) for the express purpose of product data retrieval and service feedback.
Audit Metadata
Risk Level
SAFE
Analyzed
Jul 16, 2026, 08:08 AM