seo-audit
Pass
Audited by Gen Agent Trust Hub on Apr 29, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill is designed to fetch and analyze content from untrusted external websites using tools like web_fetch or curl, which creates a surface for indirect prompt injection attacks.
- Ingestion points: External website content enters the agent's context during the audit process as described in SKILL.md.
- Boundary markers: The instructions do not provide explicit delimiters or instructions to the agent to disregard potential commands embedded within the fetched site content.
- Capability inventory: The skill's capabilities are restricted to information gathering and report generation; no access to sensitive credentials, system files, or administrative execution tools is requested.
- Sanitization: There are no documented steps for sanitizing or filtering the fetched content before the agent processes it for SEO analysis.
Audit Metadata