linkfox-sif-keyword-summary

Pass

Audited by Gen Agent Trust Hub on Jul 16, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSDATA_EXFILTRATION
Full Analysis
  • [COMMAND_EXECUTION]: The skill uses a Python script (scripts/sif_keyword_traffic.py) to interface with the SIF Keyword Summary API. This script handles parameter passing, API authentication, and result serialization.\n- [EXTERNAL_DOWNLOADS]: Instructions provide a fallback for missing configurations by directing the agent to download and install an onboarding skill from https://agent-files.linkfox.com/skills/linkfox-onboarding/release.zip. This resource is hosted on the vendor's official domain.\n- [DATA_EXFILTRATION]: The script sends the user's search queries along with session metadata (such as SESSION_ID and APP_NAME) to the vendor's API gateway (tool-gateway.linkfox.com). This transmission is required for the tool's intended analytical functionality.\n- [PROMPT_INJECTION]: The skill exhibits a surface for indirect prompt injection as it processes and displays unvalidated product metadata (titles and descriptions) from Amazon search results. Untrusted data enters the context via scripts/sif_keyword_traffic.py. The skill lacks explicit boundary markers or sanitization for this data, while maintaining capabilities for file writing and network requests. This is considered an inherent risk of the tool's e-commerce research function.\n- [SAFE]: The skill's access to environment variables for API keys and its local file system operations (writing results to a linkfox/ directory) follow established patterns for professional e-commerce automation tools.
Audit Metadata
Risk Level
SAFE
Analyzed
Jul 16, 2026, 08:08 AM