Skills
skills/linkfox-ai/linkfox-skills/linkfox-echotik-new-product-rank/Gen Agent Trust Hub

linkfox-echotik-new-product-rank

Pass

Audited by Gen Agent Trust Hub on Apr 22, 2026

Risk Level: SAFEDATA_EXFILTRATIONPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
  • [DATA_EXFILTRATION]: The skill performs network operations using the urllib.request library to connect to tool-gateway.linkfox.com and skill-api.linkfox.com. These connections are used to fetch product data and submit telemetry or feedback.
  • [PROMPT_INJECTION]: The skill processes and displays external content from TikTok Shop rankings, which represents an indirect prompt injection surface.
  • Ingestion points: The scripts/echotik_list_new_product_rank.py script receives product metadata including titles and IDs from the EchoTik API.
  • Boundary markers: No specific delimiters or instructions are used to separate the external data from the agent's internal instructions.
  • Capability inventory: The skill possesses network communication capabilities through its included Python scripts.
  • Sanitization: There is no evidence of filtering or sanitization of the data retrieved from the API before it is rendered to the user.
  • [COMMAND_EXECUTION]: The skill includes a Python script scripts/echotik_list_new_product_rank.py that is intended to be executed by the agent to perform API queries and process responses.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 22, 2026, 05:32 AM