seo-article-writer
Pass
Audited by Gen Agent Trust Hub on Apr 13, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill is vulnerable to indirect prompt injection due to its processing of untrusted data from multiple sources used to generate article content and influence subsequent agent actions.
- Ingestion points: User-provided article briefs (Step 2) and external web search results used for competitive verification (Step 8).
- Boundary markers: None; the skill does not utilize delimiters or specific instructions to ignore embedded commands within the ingested text.
- Capability inventory: The skill can perform file system writes and trigger external skills using the Skill tool (tigerdata-marketing-skills:content-reviewer).
- Sanitization: None; the instructions do not mandate validation or escaping of the content retrieved from web searches or user-supplied briefs before it is interpolated into the workflow.
Audit Metadata