linkfox-keepa-product-history
Pass
Audited by Gen Agent Trust Hub on Apr 22, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill retrieves historical product data from the vendor's API gateway at
https://tool-gateway.linkfox.com/keepa/productSeries. This operation is consistent with the skill's documented purpose. - [COMMAND_EXECUTION]: The script
scripts/keepa_product_history.pyexecutes a network request to the vendor's infrastructure using standard Python libraries to process user queries. - [DATA_EXFILTRATION]: The skill transmits necessary query parameters (ASIN, domain ID) to the author's API. It also includes a feedback mechanism that sends usage metadata to
https://skill-api.linkfox.com/api/v1/public/feedback, which is a standard vendor-owned endpoint for service improvement. - [CREDENTIALS_UNSAFE]: The skill correctly manages authentication by reading the
LINKFOXAGENT_API_KEYfrom environment variables rather than hardcoding secrets, which aligns with security best practices. - [SAFE]: No malicious patterns such as prompt injection, obfuscation, or persistence mechanisms were detected. The skill's behavior matches its stated description.
Audit Metadata