Seo Keyword Researcher

Security checks across malware telemetry and agentic risk

Overview

This is a small SEO research skill that only instructs public web searching and article brief creation, with no credential, local-file, install-script, or persistence behavior.

Install this if you want an agent to perform SEO keyword research using public search results and competitor pages. Review the generated brief for accuracy and remember that fetched web pages are untrusted content, especially if your agent auto-activates skills from broad phrases like content planning.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 87% confidence
Finding: The manifest description includes very broad trigger phrases such as 'keyword research', 'content planning', and 'what keywords should I target', which can cause the skill to be invoked for a wide range of generic SEO or writing requests. This increases the chance of over-selection over more appropriate skills, leading to unintended web searches/fetches and expansion of the skill's authority beyond its narrowly intended use.

VirusTotal

61/61 vendors flagged this skill as clean.

View on VirusTotal