parasite-seo

Security checks across malware telemetry and agentic risk

Overview

This is an instruction-only SEO guidance skill with policy-sensitive tactics but no code, credentials, persistence, or hidden system access.

Install only if you intentionally want guidance on third-party platform SEO. For ordinary SEO or content marketing, prefer a general SEO skill; before using these tactics, review search-engine and platform policies, and separately review any tool that would automate posting or use account credentials.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 95% confidence
Finding: The trigger description is extremely broad and includes many generic SEO and publishing phrases, which can cause the agent to invoke this skill for ordinary SEO, content marketing, or platform-posting requests that are not specifically about parasite SEO. Because this skill promotes tactics around borrowing third-party authority and link acquisition, over-triggering could steer benign user requests into higher-risk, policy-sensitive guidance and increase the chance of manipulative or non-compliant recommendations.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal