seo-plan
Pass
Audited by Gen Agent Trust Hub on Apr 1, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection (Category 8) because its primary function involves analyzing external data.
- Ingestion points: The skill ingests data from external sources via the 'Website URL' and 'Competitors' URLs provided as input in
SKILL.md. - Boundary markers: There are no explicit instructions or delimiters defined in the skill to prevent the agent from following malicious instructions potentially embedded in the crawled website content.
- Capability inventory: The skill utilizes external scripts (
competitor-scraper.py,tech-seo-auditor.py) that perform network operations to fetch external content. - Sanitization: No sanitization or validation logic is present to filter out prompt injection patterns from the fetched web content.
Audit Metadata