content-strategist
Pass
Audited by Gen Agent Trust Hub on Feb 18, 2026
Risk Level: SAFE
Full Analysis
- [Indirect Prompt Injection] (SAFE): The skill possesses a surface for indirect prompt injection as it ingests data from external sitemaps and web searches. 1. Ingestion points: curl commands for sitemaps, WebFetch, and WebSearch results. 2. Boundary markers: Absent. 3. Capability inventory: Tools include WebFetch, WebSearch, and AI query tools (mcp__aeo-audit__query_...). 4. Sanitization: Absent. This risk is inherent to the skill's primary function and is considered safe in this context.
- [External Downloads] (SAFE): The workflow includes a curl command to fetch sitemaps. This is a standard operation for content auditing and does not involve executing remote scripts or accessing sensitive local files.
Audit Metadata