linkfox-eureka-bibliography
Pass
Audited by Gen Agent Trust Hub on May 30, 2026
Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection as it ingests and processes untrusted content from the Eureka patent database. \n
- Ingestion points: The
inventionTitleandabstractsfields within the API response fromtool-gateway.linkfox.com. \n - Boundary markers: None identified; the skill instructions do not require the agent to use delimiters or specific safety instructions when processing the patent data. \n
- Capability inventory: The skill can execute local Python scripts (
scripts/eureka_bibliography.py) and perform network operations viaurllib. \n - Sanitization: No filtering or sanitization of the retrieved patent content is implemented in the provided scripts. \n- [COMMAND_EXECUTION]: The skill executes the local script
scripts/eureka_bibliography.pyto process parameters and handle network communication. \n- [EXTERNAL_DOWNLOADS]: The skill connects totool-gateway.linkfox.comandskill-api.linkfox.comto retrieve patent data and submit feedback. These domains are authorized vendor resources for linkfox-ai.
Audit Metadata