seo-audit
Pass
Audited by Gen Agent Trust Hub on Feb 21, 2026
Risk Level: SAFE
Full Analysis
- [Prompt Injection] (SAFE): No attempts to bypass safety filters or override system constraints were detected. The instructions follow standard expert-persona roleplay for SEO tasks.
- [Data Exposure & Exfiltration] (SAFE): The skill does not access sensitive local files or perform network operations. References to external tools (e.g., Google Search Console) are conceptual guidance for the user, not automated scripts.
- [Obfuscation] (SAFE): No hidden characters, encoded strings, or homoglyphs were found in the document.
- [Unverifiable Dependencies & Remote Code Execution] (SAFE): The skill contains no code, package manifests, or commands to download/execute remote scripts.
- [Indirect Prompt Injection] (LOW): While the skill is designed to process untrusted data (user-provided website content and SEO data), it lacks the capabilities (exec, network requests, file writes) required to escalate a potential injection into a security breach. Evidence:
- Ingestion points: Site context, keywords, and technical data provided by the user.
- Boundary markers: None present.
- Capability inventory: No executable scripts or subprocess calls.
- Sanitization: None present.
Audit Metadata