seo-content-brief
Pass
Audited by Gen Agent Trust Hub on Jul 7, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill uses the
beltCLI tool for search and extraction tasks (Tavily, Exa). These are standard tools for SEO analysis. - [SAFE]: The
allowed-toolsconfiguration correctly restrictsBashusage to only commands starting withbelt, limiting the risk of arbitrary command execution. - [INDIRECT_PROMPT_INJECTION]: The skill represents a surface for indirect prompt injection as it ingests data from external search results via
belt app run tavily/extractandbelt app run exa/search. - Ingestion points: External search results and webpage extraction (SKILL.md).
- Boundary markers: Not present in the provided CLI usage examples.
- Capability inventory:
Bashtool usage, restricted tobeltcommands. - Sanitization: Not present in the instructions; reliance is placed on the underlying model's safety filters.
Audit Metadata