ai-serp-analysis

Pass

Audited by Gen Agent Trust Hub on Jun 13, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill is a legitimate tool for SEO analysis and does not contain any malicious code or behavior.\n- [PROMPT_INJECTION]: The skill processes content from user-provided URLs and files, which creates an attack surface for indirect prompt injection. This is a characteristic of content analysis tools rather than a specific flaw in this skill.\n
  • Ingestion points: materialUrl, materialFile, and materialText (found in SKILL.md and references/form-schema.json).\n
  • Boundary markers: No explicit markers are used to separate user data from instructions.\n
  • Capability inventory: The skill calls the ai-skills.ai API using scripts/run.py.\n
  • Sanitization: No input sanitization is performed by the runner script.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 13, 2026, 03:31 AM
Security Audit — agent-trust-hub — ai-serp-analysis