seo-optimizer
Pass
Audited by Gen Agent Trust Hub on Feb 18, 2026
Risk Level: SAFE
Full Analysis
- General Security (SAFE): Analysis of the codebase, including the Python utility and the robots.txt template, reveals no malicious patterns or dangerous operations. The logic is transparent and aligned with the skill's stated purpose.\n- Indirect Prompt Injection (LOW): The skill processes local file metadata, which constitutes an ingestion point for untrusted data that could influence an agent's subsequent context.\n
- Ingestion points:
scripts/generate_sitemap.pyscans local directories for HTML files and metadata viaos.walk.\n - Boundary markers: Absent; the script does not include delimiters or warnings to differentiate sitemap content from instructions.\n
- Capability inventory: The script performs file system discovery (
os.walk) and file writing (open).\n - Sanitization: Command-line arguments for directory paths and output files are used directly from
sys.argvwithout internal path sanitization or validation.
Audit Metadata