rank-local
Pass
Audited by Gen Agent Trust Hub on Feb 27, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill contains hyperlinks to external web-based utilities at seojuice.com for SEO auditing and schema generation.
- [COMMAND_EXECUTION]: The documentation references the use of an MCP command
/seojuice:gbp-overviewto interface with external business profile data and review systems. - [PROMPT_INJECTION]: The skill has an attack surface for indirect prompt injection. 1. Ingestion points: Business name, address, and descriptions provided by the user are processed within the skill's workflow. 2. Boundary markers: The skill does not define specific delimiters or instructions to ignore embedded commands in user data. 3. Capability inventory: The agent uses the /seojuice:gbp-overview command which acts on the provided data. 4. Sanitization: No sanitization or validation of user-provided business details is specified in the static instructions.
Audit Metadata