seo-audit
Pass
Audited by Gen Agent Trust Hub on Mar 28, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill is vulnerable to Indirect Prompt Injection (Category 8) because it is designed to ingest and analyze untrusted external content.
- Ingestion points: The skill relies on fetching content from user-provided URLs using tools like
web_fetchandcurlto perform SEO audits. - Boundary markers: There are no explicit instructions or delimiters defined to isolate external web content from the agent's internal instructions, nor are there specific warnings to the agent to ignore any embedded commands within the fetched data.
- Capability inventory: The skill possesses the ability to read local configuration files (e.g.,
.agents/product-marketing-context.md), execute web requests, and generate detailed reports based on the analyzed data. - Sanitization: The skill lacks specified mechanisms to sanitize, filter, or escape content retrieved from external sites before it is processed by the AI model.
Audit Metadata