ai-seo-3
Pass
Audited by Gen Agent Trust Hub on Jun 13, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns or security vulnerabilities were detected. The skill's operational logic is transparent and restricted to its stated purpose of SEO analysis.
- [DATA_EXFILTRATION]: The skill transmits SEO-related parameters (such as URLs, target audiences, and content goals) to the vendor's API at
https://ai-skills.ai. This communication is performed over HTTPS and is authenticated via theAISKILLS_API_KEYenvironment variable, ensuring that sensitive credentials are not hardcoded in the skill files. - [COMMAND_EXECUTION]: The included Python runner script (
scripts/run.py) was audited and found to be a standard API client. It uses the built-inurlliblibrary to send and receive JSON data. The script does not contain any logic for subprocess spawning, shell execution, or unauthorized file system access. - [EXTERNAL_DOWNLOADS]: The skill references documentation and configuration from well-known or vendor-owned sources, including
github.com/allinherog-starandskills.sh. These references are used for metadata and capability definitions and do not involve the execution of untrusted remote code.
Audit Metadata