linkfox-shopee-store-bundle-deal

Pass

Audited by Gen Agent Trust Hub on Jul 16, 2026

Risk Level: SAFE
Full Analysis
  • [COMMAND_EXECUTION]: The skill uses subprocess.run to execute an internal Python script (check_auth_dependency.py) to verify if required dependencies are installed. This is a local integrity check using the current Python executable.
  • [EXTERNAL_DOWNLOADS]: The skill instructions mention downloading an onboarding skill from the vendor's official domain (agent-files.linkfox.com) if it is not already present. This is part of the vendor's standard setup process.
  • [DATA_EXFILTRATION]: The skill makes network requests to tool-gateway.linkfox.com and skill-api.linkfox.com. These are the vendor's own API gateways and feedback services used for the skill's primary functionality.
  • [CREDENTIALS_UNSAFE]: The skill correctly manages credentials by retrieving the LINKFOX_AGENT_API_KEY from environment variables rather than hardcoding secrets.
Audit Metadata
Risk Level
SAFE
Analyzed
Jul 16, 2026, 08:08 AM