gr-seo-patrol

Pass

Audited by Gen Agent Trust Hub on Jul 16, 2026

Risk Level: SAFE
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The SEO auditing scripts (check-page.py, check-schema.py, etc.) fetch content from external URLs. These scripts include robust security measures to prevent Server-Side Request Forgery (SSRF) by validating that the resolved IP addresses of target hostnames are not private, loopback, or reserved IPs.
  • [CREDENTIALS_UNSAFE]: The skill manages authentication with the GitHub API and DataForSEO using environment variables (GITHUB_TOKEN, DATAFORSEO_B64). This follows best practices for secret management and avoids hardcoded credentials.
  • [COMMAND_EXECUTION]: Automated scripts perform repository updates and SEO checks using Python and the GitHub Contents API. All actions are aligned with the stated functionality of repairing canonical links and managing SEO metadata.
  • [DATA_EXFILTRATION]: Network communication is restricted to well-known and legitimate services required for the skill's operation, specifically the GitHub API and DataForSEO service.
Audit Metadata
Risk Level
SAFE
Analyzed
Jul 16, 2026, 05:43 AM
Security Audit — agent-trust-hub — gr-seo-patrol