semrush-tool
Pass
Audited by Gen Agent Trust Hub on Mar 19, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: Indirect Prompt Injection Surface
- Ingestion points: The agent ingests data from the Semrush MCP server output during keyword research and site audits (SKILL.md).
- Boundary markers: There are no specific delimiters or instructions for the agent to ignore potentially malicious instructions embedded in the external data.
- Capability inventory: The skill does not contain any executable scripts, file-system writing capabilities, or network requests to unknown domains; it is purely instructional.
- Sanitization: The instructions do not define methods for validating or escaping the content retrieved from the Semrush API.
Audit Metadata