linkfox-zhihuiya-description-translated
Pass
Audited by Gen Agent Trust Hub on Apr 22, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill includes a Python script (
scripts/zhihuiya_description_translated.py) that handles API requests. The script uses standard Python libraries (urllib,json) and implements basic parameter validation before execution. - [EXTERNAL_DOWNLOADS]: The skill communicates with
tool-gateway.linkfox.comandskill-api.linkfox.com. These are vendor-owned domains used for the primary functionality of the skill and for reporting user feedback. - [DATA_EXFILTRATION]: The skill accesses the
LINKFOXAGENT_API_KEYenvironment variable to authenticate requests to the vendor's API gateway. This follows standard security practices for managing sensitive credentials without hardcoding them. - [PROMPT_INJECTION]: The instructions in
SKILL.mdare focused on functional guidance and parameters. There are no attempts to override agent behavior or bypass safety filters.
Audit Metadata