yoast-seo
Pass
Audited by Gen Agent Trust Hub on Apr 2, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the Membrane CLI (
@membranehq/cli) via npm. This is a legitimate tool provided by the vendor (membrane/membranedev) to facilitate the skill's functionality. - [COMMAND_EXECUTION]: The skill utilizes several CLI commands (e.g.,
membrane login,membrane connect,membrane action run, andmembrane request) to manage authentication and interact with the Yoast SEO API. These are standard operations for this integration platform. - [CREDENTIALS_UNSAFE]: The skill explicitly advises against manual credential handling, stating that Membrane manages the authentication lifecycle server-side with no local secrets, which is a recommended security practice.
- [SAFE]: No prompt injections, data exfiltration patterns, obfuscation, or persistence mechanisms were found. The skill's behavior is consistent with its stated purpose of managing Yoast SEO data.
Audit Metadata