Webflow SEO/GEO + API

Security checks across malware telemetry and agentic risk

Overview

The skill is a legitimate Webflow SEO workflow, but it can change and publish live website content with an API token without clear approval or staging safeguards.

Review before installing. Use only a least-privilege Webflow token, preferably against staging first, and instruct the agent to show the exact JSON diff and get explicit approval before any POST, PATCH, or publish action on a live site.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 88% confidence
Finding: The skill instructs the agent to create local patch files and then modify and publish Webflow CMS content through the API, but it does not require confirmation, environment scoping, or warnings before changing local artifacts or live site content. In an agent setting, this can lead to unintended website defacement, SEO-impacting edits, or accidental publication to production if the user expected analysis or draft-only behavior.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal