linkfox-temu-product-query

Pass

Audited by Gen Agent Trust Hub on Jul 16, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONDATA_EXFILTRATION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill instructions in SKILL.md guide the agent to download and install a zip package from https://agent-files.linkfox.com (a vendor-owned domain) to resolve authentication or credit issues.
  • [COMMAND_EXECUTION]: The skill executes a local Python script scripts/temu_product_query.py to perform the product searches and handle data processing.
  • [DATA_EXFILTRATION]: The script accesses environment variables LINKFOX_AGENT_API_KEY and LINKFOXAGENT_API_KEY to authenticate requests to the vendor's API gateway (tool-gateway.linkfox.com). It also transmits session metadata, including SESSION_ID and APP_NAME, in the request headers for tracking and billing purposes.
  • [FILE_SYSTEM_OPERATIONS]: The Python script implements a logging and caching system that writes response data, session metadata (_meta.json), and index files (index.jsonl) to a linkfox/ directory within the workspace or home directory.
Audit Metadata
Risk Level
SAFE
Analyzed
Jul 16, 2026, 08:08 AM