Skills
skills/redfox-data/redfox-community/douyin-content-surge/Gen Agent Trust Hub

douyin-content-surge

Pass

Audited by Gen Agent Trust Hub on Jun 16, 2026

Risk Level: SAFE
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill communicates with the vendor's API endpoint at https://redfox.hk/story/api/dy/search/hotContentRank to retrieve Douyin content rankings. This is a legitimate external connection required for the skill's documented functionality.
  • [CREDENTIALS_UNSAFE]: The skill uses an API key (REDFOX_API_KEY) stored in environment variables to authenticate requests. This conforms to recommended security practices for secret management, and no hardcoded credentials were found.
  • [COMMAND_EXECUTION]: The skill runs a local Python script scripts/douyin_daily_increment.py to query the API and format results into Markdown. The script uses standard libraries and contains no malicious command execution or privilege escalation logic.
  • [DATA_EXFILTRATION]: No unauthorized data transfer was detected. The API key and query parameters are sent only to the verified vendor domain.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 16, 2026, 03:36 AM
Security Audit — agent-trust-hub — douyin-content-surge