aeo-visibility-monitor
Pass
Audited by Gen Agent Trust Hub on Mar 14, 2026
Risk Level: SAFECOMMAND_EXECUTIONDATA_EXFILTRATION
Full Analysis
- [COMMAND_EXECUTION]: The skill executes local Node.js scripts (e.g.,
node skills/aeo-visibility/src/cli.js) to perform company profiling and visibility checks. This is the primary intended mechanism for its functionality. - [DATA_EXFILTRATION]: The skill processes and stores brand visibility data, competitor metrics, and sentiment scores in a local directory structure (
clients/<client-name>/aeo-visibility-reports/). This data is managed locally for reporting and delta analysis purposes. - [EXTERNAL_DOWNLOADS]: The skill connects to official external APIs (OpenAI, Anthropic, Google, and Perplexity) to gather engine responses. These are well-known, trusted service providers necessary for the skill's operation.
- [SAFE]: The skill provides a cron job example for recurring runs. While this establishes a form of persistence, it is explicitly documented as a core feature for scheduled monitoring and is initiated by the user rather than being a hidden background process.
Audit Metadata