Skills
skills/ferdiboxman/402claw/seo-audit-pro/Gen Agent Trust Hub

seo-audit-pro

Pass

Audited by Gen Agent Trust Hub on Mar 1, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill connects to api.402claw.com to fetch SEO metrics, Lighthouse scores, and broken link data. This is a vendor-provided service essential to the skill's stated purpose of providing real-world audit data rather than static checklists.
  • [PROMPT_INJECTION]: The skill is vulnerable to indirect prompt injection as it processes text content and metadata (like page titles and descriptions) from arbitrary websites provided by the user.
  • Ingestion points: Data returned from the /seo, /lighthouse, and /links endpoints in SKILL.md and references/api-docs.md.
  • Boundary markers: No specific delimiters or instructions are used to distinguish third-party website content from system instructions within the agent's context.
  • Capability inventory: The skill primarily performs network requests and generates reports; it does not have the capability to execute shell commands or access sensitive local files.
  • Sanitization: The skill lacks logic to sanitize or filter the content retrieved from external URLs before presenting it to the agent.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 1, 2026, 03:47 PM