linkfox-zhihuiya-patent-cited

Pass

Audited by Gen Agent Trust Hub on Jul 16, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONDATA_EXFILTRATION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill includes instructions to download an onboarding component from the vendor's domain (agent-files.linkfox.com) if the environment is not properly configured. This is a legitimate recovery mechanism provided by the author.
  • [COMMAND_EXECUTION]: The skill executes a local Python script (scripts/zhihuiya_cited_by.py) to process patent identifiers and interface with the remote API.
  • [DATA_EXFILTRATION]: Information regarding patent identifiers is transmitted to tool-gateway.linkfox.com to fulfill data requests, and usage feedback is sent to skill-api.linkfox.com. All communication is directed to the vendor's verified infrastructure.
  • [SAFE]: Data persistence is handled by writing full API responses to the local project directory (linkfox/ subfolder) for session tracking, which is intended behavior for this type of integration.
Audit Metadata
Risk Level
SAFE
Analyzed
Jul 16, 2026, 08:08 AM