seo-sxo
Pass
Audited by Gen Agent Trust Hub on Jun 17, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill utilizes specific MCP tools from the SE Ranking server (e.g.,
DATA_getSerpResults,DATA_getAiOverview) and the Firecrawl MCP for scraping. These are structured, predefined tool calls used for data retrieval rather than arbitrary shell command execution. - [EXTERNAL_DOWNLOADS]: The skill retrieves SERP data from SE Ranking and scrapes content from third-party websites via
WebFetchandFirecrawl. These operations are fundamental to the skill's purpose of analyzing search results and competitors. - [PROMPT_INJECTION]: The skill processes external web content fetched via scraping, which constitutes an indirect prompt injection surface. However, the risk is mitigated as the agent uses this data to populate structured reports based on internal reference files (
references/page-type-patterns.mdandreferences/persona-rubrics.md), rather than executing instructions contained within the fetched content.
Audit Metadata