linkfox-temu-manage-product-eu

Warn

Audited by Socket on Jul 16, 2026

1 alert found:

Security
SecurityMEDIUM
SKILL.md

SUSPICIOUS. The core product-management purpose matches the capabilities, but the trust model is weak: all Temu operations and credentials are proxied through LinkFox, and the skill can trigger installation of another skill from an unverifiable ZIP archive. This looks like a coherent commercial gateway integration rather than confirmed malware, but the indirect data flow, credential forwarding, transitive install step, and persistent workspace logging make it medium-high risk.

Confidence: 86%Severity: 76%
Audit Metadata
Analyzed At
Jul 16, 2026, 08:10 AM
Package URL
pkg:socket/skills-sh/linkfox-ai%2Flinkfox-skills%2Flinkfox-temu-manage-product-eu%2F@7b6026ec8d60c9b98ea7f55b672059e45d5de8614266171930c0c21cb26ca6a2