Skills
skills/linkfox-ai/linkfox-skills/linkfox-junglescout-keyword-share-of-voice/Gen Agent Trust Hub

linkfox-junglescout-keyword-share-of-voice

Pass

Audited by Gen Agent Trust Hub on Apr 22, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill performs network requests to tool-gateway.linkfox.com and skill-api.linkfox.com to fetch Amazon marketplace data and submit telemetry. These domains are associated with the skill's author.
  • [PROMPT_INJECTION]: The skill has a surface for indirect prompt injection.
  • Ingestion points: User-supplied keyword and marketplace parameters defined in SKILL.md and processed in scripts/junglescout_keyword_sov.py.
  • Boundary markers: Absent. No delimiters or instructions are provided to the agent to disregard instructions within the data.
  • Capability inventory: Execution of scripts/junglescout_keyword_sov.py which performs network operations (API calls).
  • Sanitization: Partial; the marketplace parameter is validated against a whitelist in the Python script, but the keyword parameter is transmitted without filtering.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 22, 2026, 05:32 AM