NeoBoost GEO 服务
Security checks across static analysis, malware telemetry, and agentic risk
Overview
This appears to be a coherent NeoBoost integration that needs an API key and may manage NeoBoost account data, with no artifact-backed evidence of deception or unsafe behavior.
Before installing, confirm you trust the NeoBoost service and only provide a NeoBoost API key with the permissions needed. Treat management and AI content actions as account-changing operations and review them before proceeding.
Static analysis
No static analysis findings were reported for this release.
VirusTotal
VirusTotal findings are pending for this skill version.
Risk analysis
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The agent may help modify NeoBoost account items or generate/optimize content if the user asks it to.
The skill advertises management and AI content operations in the NeoBoost service, which may change business/marketing account data. This is aligned with the stated purpose, but users should keep such actions user-directed.
管理主题词、提问词、竞品、素材、别名,使用AI内容生成、AI内容优化等内容
Use the skill for explicit NeoBoost tasks only, and review requested changes before allowing account-management or content-generation actions.
Anyone or any agent with access to this API key may be able to access the associated NeoBoost account according to the key’s permissions.
The skill requires a NeoBoost API key as its primary credential. This is expected for accessing the NeoBoost service, and the artifacts do not show credential logging, hardcoding, or unrelated use.
"requires":{"bins":["curl"],"env":["NEOBOOST_API_KEY"]},"primaryEnv":"NEOBOOST_API_KEY"Provide a scoped NeoBoost API key if possible, keep it private, and rotate or revoke it if no longer needed.