linkfox-echotik-list-product
Pass
Audited by Gen Agent Trust Hub on Jul 16, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill provides instructions to download an auxiliary onboarding component from the vendor's official domain (
agent-files.linkfox.com) in the event that required local configuration is missing. This is a documented part of the vendor's service delivery. - [COMMAND_EXECUTION]: Includes a Python script (
scripts/echotik_list_product.py) used to interface with the EchoTik API. The script handles parameters passed as JSON and manages local output files for data persistence and caching. - [CREDENTIALS_UNSAFE]: Appropriately utilizes environment variables (
LINKFOX_AGENT_API_KEY) for authentication, ensuring that sensitive API keys are not hardcoded within the skill's source files. - [DATA_EXFILTRATION]: Network operations are confined to official vendor endpoints (
tool-gateway.linkfox.comandskill-api.linkfox.com) for the express purpose of product data retrieval and service feedback.
Audit Metadata