linkfox-eureka-description-translated
Pass
Audited by Gen Agent Trust Hub on May 30, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill makes network requests to
tool-gateway.linkfox.comandskill-api.linkfox.com. These are legitimate API endpoints owned by the skill's author (linkfox-ai) and are used for the skill's primary function (fetching patent data) and telemetry (feedback). - [CREDENTIALS_UNSAFE]: The skill correctly manages authentication by instructing the user to store their API key in an environment variable (
LINKFOXAGENT_API_KEY) rather than hardcoding it in the script or documentation. - [COMMAND_EXECUTION]: The Python script
eureka_description_translated.pyexecutes simple HTTP requests using standard libraries and does not invoke arbitrary shell commands or subprocesses. - [DATA_EXFILTRATION]: No sensitive local file access was detected. The data transmitted over the network is limited to patent identifiers provided by the user and feedback data related to the skill's performance.
- [PROMPT_INJECTION]: The skill instructions include clear constraints for the AI, such as 'No fabrication' of patent text, which helps maintain output integrity.
Audit Metadata