Skills
skills/anycap-ai/anycap/anycap-ai-tool-seo/Gen Agent Trust Hub

anycap-ai-tool-seo

Pass

Audited by Gen Agent Trust Hub on Apr 24, 2026

Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
  • [PROMPT_INJECTION]: The skill processes untrusted content from the web, which constitutes an indirect prompt injection attack surface. \n
  • Ingestion points: Content is retrieved from the internet using the anycap crawl and anycap search commands as described in SKILL.md. \n
  • Boundary markers: The skill lacks instructions for using delimiters or boundary markers to distinguish untrusted web content from the agent's system instructions. \n
  • Capability inventory: The agent is instructed to execute shell commands via the anycap CLI and perform file system operations in a local workspace. \n
  • Sanitization: No validation or sanitization routines are specified for handling the data ingested from external sources. \n- [COMMAND_EXECUTION]: The skill requires the use of the anycap CLI tool to perform its primary function. This is a legitimate requirement for the skill's SEO auditing purpose.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 24, 2026, 08:45 AM