linkfox-zhihuiya-pdf-data
Pass
Audited by Gen Agent Trust Hub on Jul 16, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill references a download URL for an auxiliary onboarding skill from the vendor's official file server (agent-files.linkfox.com) when API credentials are not configured.
- [COMMAND_EXECUTION]: Uses a Python script (scripts/zhihuiya_pdf_data.py) to process user requests, perform network communication with the API, and manage local JSON data files for results and caching.
- [DATA_EXFILTRATION]: Network requests are directed to official vendor domains (tool-gateway.linkfox.com and skill-api.linkfox.com) to perform the skill's primary function and collect feedback.
- [SAFE]: No obfuscation, hardcoded credentials, or unauthorized access to sensitive local system files were detected in the skill's code or instructions.
Audit Metadata