schema-markup
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOW
Full Analysis
- NO_CODE (SAFE): The skill consists entirely of markdown instructions and JSON-LD examples. There are no scripts (.js, .py, .sh) or executable components that could perform malicious actions.
- DATA_EXPOSURE (SAFE): While the skill instructions mention reading a specific file (
.claude/product-marketing-context.md), this is a standard pattern for context-aware assistance and does not involve exfiltrating data to external servers. - EXTERNAL_DOWNLOADS (SAFE): The skill contains links to official validation tools (Google and Schema.org) but does not automate any downloads or execution of remote content.
- INDIRECT_PROMPT_INJECTION (LOW): The skill processes user-provided content and local context files to generate schema markup. This is a low-risk surface as the output is static JSON-LD strings used for SEO purposes and the skill lacks any capabilities to execute commands or modify system state based on that data.
Audit Metadata