Seo Audit

Security checks across malware telemetry and agentic risk

Overview

This SEO audit skill has a legitimate purpose, but it includes a direct remote install command that would execute network-delivered code on the user's machine.

Review this before installing. Prefer a package-manager or documented install path for the Bright Data CLI, and avoid running the curl-to-bash command unless you trust the source and are comfortable executing a remote installer. Only run audits for sites and keywords you are allowed to send through Bright Data.

SkillSpector

By NVIDIA

Vulnerability Patterns

Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Tool MisuseTool Parameter Abuse, Chaining Abuse, Unsafe Defaults
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access

Findings (2)

External Script Fetching

High

Category: Supply Chain
Content: The user must have the Bright Data CLI installed and authenticated: ```bash curl -fsSL https://cli.brightdata.com/install.sh | bash bdata login ```
Confidence: 98% confidence
Finding: curl -fsSL https://cli.brightdata.com/install.sh | bash

Chaining Abuse

High

Category: Tool Misuse
Content: The user must have the Bright Data CLI installed and authenticated: ```bash curl -fsSL https://cli.brightdata.com/install.sh | bash bdata login ```
Confidence: 99% confidence
Finding: | bash

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal