Back to skill

Security audit

Technical Seo Checker

Security checks across malware telemetry and agentic risk

Overview

This skill is a normal technical SEO audit helper, with only minor routing ambiguity from broad trigger phrases.

Install this if you want SEO-focused website audit assistance. Before connecting Search Console, crawler, PageSpeed, or CDN tools, confirm the exact domain and only provide access for properties you are authorized to audit.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Vague Triggers

Medium
Confidence
90% confidence
Finding
The description includes broad, natural-language activation phrases such as "my site is slow" and "mobile issues," which can match many general support or troubleshooting requests that are not clearly asking for this specific skill. Over-broad invocation can cause the agent to select this skill in the wrong context, leading to irrelevant actions, incorrect assumptions about user intent, and unnecessary access to site-analysis workflows or connected tools.

Vague Triggers

Medium
Confidence
94% confidence
Finding
The manifest trigger list contains multiple ambiguous phrases without sufficient scope constraints, including generic requests like "site speed," "mobile issues," and "indexing problems." In a tool-enabled agent environment, ambiguous triggers increase the risk of unintended skill activation, which can misroute user requests and initiate technical auditing behavior or external data collection when the user did not explicitly request an SEO audit.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.