linkfox-eureka-description-translated

Pass

Audited by Gen Agent Trust Hub on May 30, 2026

Risk Level: SAFE
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill makes network requests to tool-gateway.linkfox.com and skill-api.linkfox.com. These are legitimate API endpoints owned by the skill's author (linkfox-ai) and are used for the skill's primary function (fetching patent data) and telemetry (feedback).
  • [CREDENTIALS_UNSAFE]: The skill correctly manages authentication by instructing the user to store their API key in an environment variable (LINKFOXAGENT_API_KEY) rather than hardcoding it in the script or documentation.
  • [COMMAND_EXECUTION]: The Python script eureka_description_translated.py executes simple HTTP requests using standard libraries and does not invoke arbitrary shell commands or subprocesses.
  • [DATA_EXFILTRATION]: No sensitive local file access was detected. The data transmitted over the network is limited to patent identifiers provided by the user and feedback data related to the skill's performance.
  • [PROMPT_INJECTION]: The skill instructions include clear constraints for the AI, such as 'No fabrication' of patent text, which helps maintain output integrity.
Audit Metadata
Risk Level
SAFE
Analyzed
May 30, 2026, 12:04 AM