seo-programmatic
Pass
Audited by Gen Agent Trust Hub on Feb 19, 2026
Risk Level: SAFENO_CODE
Full Analysis
- NO_CODE (SAFE): The skill consists entirely of Markdown instructions and planning checklists. There is no Python, JavaScript, or shell code provided or referenced.
- Indirect Prompt Injection (LOW): The skill instructs the agent to analyze data from external sources like CSV/JSON files, APIs, and databases.
- Ingestion points: Assessment of user-provided CSV/JSON, API responses, and DB query results mentioned in 'Data Source Assessment'.
- Boundary markers: Absent; the instructions do not specify delimiters for external data.
- Capability inventory: No executable capabilities (subprocess, file-write, network ops) are present in the skill.
- Sanitization: Not applicable as the skill only provides a framework for analysis, not the logic for data retrieval or processing.
- DATA_EXFILTRATION (SAFE): While it mentions API endpoints and database queries, it does not contain any code to perform network requests or connect to external services. It serves as a checklist for a human or an agent to perform manually.
- CREDENTIALS_UNSAFE (SAFE): No hardcoded API keys, tokens, or passwords were found in the instructions.
Audit Metadata