linkfox-eureka-bibliography

Pass

Audited by Gen Agent Trust Hub on May 30, 2026

Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection as it ingests and processes untrusted content from the Eureka patent database. \n
  • Ingestion points: The inventionTitle and abstracts fields within the API response from tool-gateway.linkfox.com. \n
  • Boundary markers: None identified; the skill instructions do not require the agent to use delimiters or specific safety instructions when processing the patent data. \n
  • Capability inventory: The skill can execute local Python scripts (scripts/eureka_bibliography.py) and perform network operations via urllib. \n
  • Sanitization: No filtering or sanitization of the retrieved patent content is implemented in the provided scripts. \n- [COMMAND_EXECUTION]: The skill executes the local script scripts/eureka_bibliography.py to process parameters and handle network communication. \n- [EXTERNAL_DOWNLOADS]: The skill connects to tool-gateway.linkfox.com and skill-api.linkfox.com to retrieve patent data and submit feedback. These domains are authorized vendor resources for linkfox-ai.
Audit Metadata
Risk Level
SAFE
Analyzed
May 30, 2026, 12:05 AM