seo-local-seo
Pass
Audited by Gen Agent Trust Hub on Mar 4, 2026
Risk Level: SAFEPROMPT_INJECTIONNO_CODE
Full Analysis
- [PROMPT_INJECTION]: The skill exhibits a surface for indirect prompt injection through its interaction with untrusted external data.
- Ingestion points: The skill utilizes MCP tools such as analyze_page and extract_schema (referenced in README.md and SKILL.md) to audit and extract data from external, untrusted websites.
- Boundary markers: There are no explicit instructions or delimiters defined to prevent the agent from inadvertently following instructions that might be embedded within the external content being analyzed.
- Capability inventory: The skill allows the agent to generate LocalBusiness schema and perform keyword research, but it lacks high-privilege capabilities such as arbitrary file system access or system command execution.
- Sanitization: The instructions do not specify any mechanisms for sanitizing or validating the content retrieved from external URLs before it is processed by the agent.
- [NO_CODE]: The skill consists entirely of Markdown-based instructional content, checklists, and templates, with no included executable code or scripts.
Audit Metadata