seo-opportunity-finder
Pass
Audited by Gen Agent Trust Hub on Mar 14, 2026
Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection because it ingests data from external URLs provided by the user (your_site_url and competitor_url) using the site-content-catalog and seo-domain-analyzer tools.
- Ingestion points: SKILL.md instructs the agent to crawl and analyze content from external websites during Phase 1 and Phase 2.
- Boundary markers: The skill does not define specific delimiters or instructions to ignore embedded commands within the content retrieved from external websites.
- Capability inventory: The skill executes local Python and Node.js scripts and synthesizes reports based on the ingested content.
- Sanitization: No sanitization or validation of the retrieved content is mentioned before it is processed by the agent.
- [COMMAND_EXECUTION]: The skill orchestrates tasks by executing local Python and Node.js scripts (e.g., catalog_site.py, cli.js, analyze_seo.py) using subprocess commands as part of its core logic. These scripts accept user-provided URLs and domains as command-line arguments.
Audit Metadata