linkfox-temu-fulfillment-global

Pass

Audited by Gen Agent Trust Hub on Jul 16, 2026

Risk Level: SAFE
Full Analysis
  • [DATA_EXFILTRATION]: The skill communicates with tool-gateway.linkfox.com and skill-api.linkfox.com to proxy Temu API requests and send feedback. These domains are owned by the vendor (linkfox-ai) and are necessary for the skill's primary functionality.
  • [CREDENTIALS_UNSAFE]: The skill stores Temu access tokens in a local configuration file at ~/.linkfox/temu-access-tokens.json. This is used for session management and follows standard practices for CLI-based agent skills.
  • [EXTERNAL_DOWNLOADS]: The skill's documentation mentions an onboarding process that may involve downloading a resource from agent-files.linkfox.com. This is a vendor-controlled domain used for legitimate setup purposes.
Audit Metadata
Risk Level
SAFE
Analyzed
Jul 16, 2026, 08:08 AM