ai-serp-analysis
Pass
Audited by Gen Agent Trust Hub on Jun 13, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill is a legitimate tool for SEO analysis and does not contain any malicious code or behavior.\n- [PROMPT_INJECTION]: The skill processes content from user-provided URLs and files, which creates an attack surface for indirect prompt injection. This is a characteristic of content analysis tools rather than a specific flaw in this skill.\n
- Ingestion points:
materialUrl,materialFile, andmaterialText(found inSKILL.mdandreferences/form-schema.json).\n - Boundary markers: No explicit markers are used to separate user data from instructions.\n
- Capability inventory: The skill calls the
ai-skills.aiAPI usingscripts/run.py.\n - Sanitization: No input sanitization is performed by the runner script.
Audit Metadata