dataforseo
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- Indirect Prompt Injection (LOW): The skill interacts with external, untrusted data sources including Google SERP results, competitor website content, and brand mentions. This data could contain malicious instructions intended to influence the agent's behavior. Ingestion points: API functions such as serp_google_organic(), content_search(), and labs_ranked_keywords() fetch content from external web sources into the agent's context. Boundary markers: No explicit delimiters or instructions to ignore embedded commands are present in the provided code snippets. Capability inventory: The skill possesses the ability to execute Python code and write files to the local filesystem (e.g., to ~/dataforseo_outputs/). Sanitization: There is no evidence of sanitization or filtering of the retrieved API data before it is processed or stored.
- Data Exposure (SAFE): The skill stores API credentials in ~/.dataforseo_config.json. While this is a sensitive file, it is the skill's own configuration file and follows standard CLI application patterns for local secret management.
Audit Metadata