linkfox-shopee-store-first-mile
Warn
Audited by Socket on Jul 16, 2026
1 alert found:
SecuritySecuritySKILL.md
MEDIUMSecurityMEDIUM
SKILL.md
SUSPICIOUS. The business purpose is coherent, but the actual data flow is not: Shopee credentials and requests are routed through LinkFox's proxy instead of official Shopee endpoints, and the recovery path adds a transitive remote skill install from an opaque ZIP. This looks more like a managed gateway ecosystem than direct malware, but the proxying of tokens plus unverifiable skill distribution creates medium-high security risk.
Confidence: 85%Severity: 78%
Audit Metadata