Skills
skills/nicepkg/ai-workflow/seo-wordpress-manager/Gen Agent Trust Hub

seo-wordpress-manager

Pass

Audited by Gen Agent Trust Hub on Feb 17, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [Indirect Prompt Injection] (LOW): The skill is susceptible to indirect prompt injection via WordPress content ingestion.
  • Ingestion points: scripts/analyze_seo.py fetches post titles, excerpts, and current SEO data from an external WordPress site via GraphQL.
  • Boundary markers: The generate_analysis_report function in analyze_seo.py embeds raw post data into a JSON structure for the AI without using delimiters or instructions to ignore potential commands within that data.
  • Capability inventory: The skill includes capability to write back to the WordPress site via the updatePostSeo mutation in scripts/wp_graphql_client.py.
  • Sanitization: No sanitization or filtering is performed on the ingested content before it is passed to the AI.
Audit Metadata
Risk Level
SAFE
Analyzed
Feb 17, 2026, 05:52 PM