Back to plugin

Security audit

Seo Keyword Research

Security checks across malware telemetry and agentic risk

Overview

This SEO research skill is mostly coherent and transparent about using an AIsa API key, crawling public websites, and sending SEO inputs to AIsa/DataForSEO, though its invocation wording is broader than ideal.

Install only if you are comfortable providing an AIsa API key and sending SEO research inputs, crawled public page text, competitor domains, and prompts to AIsa/DataForSEO. Use it for SEO keyword research tasks, not general browsing or private content extraction, and avoid crawling internal, authenticated, customer, or confidential pages.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (5)

Lp3

Medium
Category
MCP Least Privilege
Confidence
89% confidence
Finding
The skill clearly instructs the agent to use environment variables, read and write local files, and make network requests, yet it does not declare explicit permissions for those capabilities. This creates a trust and review gap: a harness or user may invoke the skill without understanding that local content and site data will be transmitted to external services and written to disk.

Vague Triggers

Medium
Confidence
93% confidence
Finding
The invocation guidance goes beyond narrowly scoped SEO keyword research and explicitly says to use the skill when the user needs generic web search, research, source discovery, or content extraction. That broad trigger can cause the agent to select this skill for unrelated tasks, increasing the chance of unnecessary crawling, external API use, and data handling outside the intended security and policy boundaries.

Vague Triggers

Medium
Confidence
84% confidence
Finding
The trigger condition is overly broad because it includes generic 'web search, research, source discovery, or content extraction' tasks, which can cause the skill to activate outside narrow SEO keyword research. In context, that matters because activation leads to crawling websites and sending gathered content to external AIsa/DataForSEO endpoints, increasing the chance of unnecessary data collection and exfiltration.

External Transmission

Medium
Category
Data Exfiltration
Content
Use these AIsa endpoints:

- Data APIs: `https://api.aisa.one/apis/v1/...`
- LLM gateway: `https://api.aisa.one/v1/chat/completions`

Never print or commit API keys. If the key is missing, ask the user to set `AISA_API_KEY`.
Confidence
87% confidence
Finding
https://api.aisa.one/

External Transmission

Medium
Category
Data Exfiltration
Content
Use these AIsa endpoints:

- Data APIs: `https://api.aisa.one/apis/v1/...`
- LLM gateway: `https://api.aisa.one/v1/chat/completions`

Never print or commit API keys. If the key is missing, ask the user to set `AISA_API_KEY`.
Confidence
87% confidence
Finding
https://api.aisa.one/

VirusTotal

62/62 vendors flagged this plugin as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.