linkfox-shopee-store-ams

Fail

Audited by Snyk on Jul 16, 2026

Risk Level: CRITICAL
Full Analysis

CRITICAL E005: Suspicious download URL detected in skill instructions.

  • Suspicious download URL detected (high risk: 0.80). The majority of URLs are official Shopee docs and internal LinkFox API endpoints, but the SKILL.md instructs downloading a ZIP from agent-files.linkfox.com (a direct archive download used to distribute/install a skill), which is an external archive distribution vector and therefore potentially suspicious and should be treated cautiously.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

  • Third-party content exposure detected (high risk: 0.75). Runtime path: the skill calls Shopee’s POST /shopee/developerProxy and then prints/summarizes the returned JSON (emit_result() in _shopee_ams_common.py), so any free-text fields in the upstream API response (outsider-controlled) can be included in the agent’s LLM context via stdout.

Issues (2)

E005
CRITICAL

Suspicious download URL detected in skill instructions.

W011
MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata
Risk Level
CRITICAL
Analyzed
Jul 16, 2026, 08:09 AM
Issues
2