dataforseo-labs-api
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOWCOMMAND_EXECUTIONDATA_EXFILTRATIONPROMPT_INJECTION
Full Analysis
- Data Exposure & Exfiltration (LOW): The skill requires outbound network access to api.dataforseo.com and sandbox.dataforseo.com. These domains are not present on the trusted whitelist of external sources.
- Indirect Prompt Injection (LOW): The skill processes external content fetched from the DataForSEO API, which could include third-party content like SERP titles or descriptions. 1. Ingestion points: API response payloads from api.dataforseo.com (e.g., keyword suggestions, competitor data). 2. Boundary markers: None are defined in the skill instructions to separate external data from agent commands. 3. Capability inventory: The skill is primarily focused on outbound HTTP requests and does not have write or execute permissions on the local host. 4. Sanitization: There is no evidence of sanitization or schema validation for the external data before it is processed by the agent.
- Command Execution (INFO): The documentation includes standard shell examples using curl for API interaction.
- Metadata Poisoning (LOW): The skill metadata mentions a non-existent version of OpenAI's models (GPT-5.2), which is misleading but does not appear to facilitate a security bypass.
Audit Metadata