linkfox-shopee-store-shop
Fail
Audited by Snyk on Jul 16, 2026
Risk Level: CRITICAL
Full Analysis
CRITICAL E005: Suspicious download URL detected in skill instructions.
- Suspicious download URL detected (high risk: 0.90). Contains a direct download link to a ZIP installer hosted on a non-standard file-hosting URL with explicit instructions to download and install the skill (user must be asked to authorize), which matches high-risk distribution patterns for malware.
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.75). Outsider-authored free text can enter the LLM context via the runtime HTTP responses from Shopee (developerProxy/storeTokens) that are printed to stdout (full JSON when ≤8KB or when
--inline), and that stdout is typically fed back into the agent’s LLM context.
MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).
- Potentially malicious external URL detected (high risk: 0.90). The skill's runtime fallback explicitly instructs fetching and installing remote onboarding code from https://agent-files.linkfox.com/skills/linkfox-onboarding/release.zip, which would retrieve and install remote content that controls prompts/behavior at runtime.
Issues (3)
E005
CRITICALSuspicious download URL detected in skill instructions.
W011
MEDIUMThird-party content exposure detected (indirect prompt injection risk).
W012
MEDIUMUnverifiable external dependency detected (runtime URL that controls agent).
Audit Metadata