seo-maps
Pass
Audited by Gen Agent Trust Hub on May 16, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill performs legitimate SEO tasks using authorized tools and APIs. No malicious patterns were identified.
- [DATA_EXPOSURE]: The skill implements a local caching mechanism in the
.seo-cache/directory to store business metadata, audit scores, and page analysis for improved context. This data is handled locally and used to inform SEO recommendations. - [EXTERNAL_DOWNLOADS]: The skill integrates with several well-known third-party services including DataForSEO, Google Maps Platform, Overpass API (OpenStreetMap), Geoapify, and Nominatim. These integrations are used for geocoding, business data discovery, and competitive analysis, which are central to the skill's primary function.
- [PROMPT_INJECTION]: The skill processes data from external websites (Bing) and third-party APIs (DataForSEO, Tripadvisor, Trustpilot).
- Ingestion points: Untrusted data enters the context via
WebFetchcalls to Bing and responses from business data APIs. - Boundary markers: The instructions do not explicitly define delimiters to isolate external content from the core instructions.
- Capability inventory: The skill has capabilities for file writing (
.seo-cache/) and network operations via MCP tools. - Sanitization: There is no mention of specific sanitization or validation logic for data ingested from external sources.
Audit Metadata