linkfox-temu-returns-refunds-us
Warn
Audited by Socket on Jul 16, 2026
1 alert found:
SecuritySecuritySKILL.md
MEDIUMSecurityMEDIUM
SKILL.md
SUSPICIOUS. The business purpose is plausible, but the skill routes Temu credentials and data through LinkFox-controlled gateway endpoints instead of official Temu APIs, and it can trigger installation of another remotely packaged skill. Same-brand domains reduce the chance of outright malware, but the intermediary data flow, credential forwarding, and transitive install chain make the skill high security risk.
Confidence: 88%Severity: 76%
Audit Metadata