Skills
skills/norahe0304-art/30x-seo/30x-seo-serp/Gen Agent Trust Hub

30x-seo-serp

Pass

Audited by Gen Agent Trust Hub on Mar 9, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSCREDENTIALS_UNSAFEPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill uses the Bash tool to execute curl and cat commands for interacting with the API and reading local configuration files.
  • [EXTERNAL_DOWNLOADS]: The skill fetches SEO metrics and search engine results from api.dataforseo.com, which is the official endpoint for the DataForSEO service.
  • [CREDENTIALS_UNSAFE]: The skill reads API authentication credentials from the local file path ~/.config/dataforseo/auth to authorize its requests.
  • [PROMPT_INJECTION]: 1. Ingestion points: External search result data and SERP features are ingested via the DataForSEO API. 2. Boundary markers: No boundary markers or instructions to ignore embedded instructions are present in the processing logic. 3. Capability inventory: The skill has the capability to execute shell commands via Bash. 4. Sanitization: No sanitization or validation of the external API response data is performed.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 9, 2026, 02:01 AM