serp-analysis@ 9.9.9
github.com/aaron-he-zhu/seo-geo-claude-skills
Scanned Thu, 28 May 2026 17:00:22 GMT
Scan ID crawl-b7z8n1jd19iqv54lujkbqdt8 · 2ms
C
SCORE 55 / 100
Verdict: Proceed with caution
7 medium findings.
This skill ships without a capability manifest plus 6 other issues listed below.
0 critical0 high7 medium5 rules passed
Why grade C?
score · 55 / 100The current grade reflects 7 medium findings (6+ MEDs → C).
0 CRIT0 HIGH7 MED0 LOW
To reach a higher grade
- BReach Btarget score 75
Resolve 2 of 7 MED (cap is 5).
- AReach Atarget score 95
Resolve 5 of 7 MED (cap is 2).
Thresholds are documented at /docs/grading. Source-of-truth is the grade() function in @skillox/scanner.
Findings · ordered by severity
medNo capability manifest declaredThe skill ships without a `manifest.yaml` or `capabilities` block in its frontmatter. Without a manifest, the runtime cannot enforce what this skill is permitted to do.rule: no-manifest▾
No capability manifest declared
The skill ships without a `manifest.yaml` or `capabilities` block in its frontmatter. Without a manifest, the runtime cannot enforce what this skill is permitted to do.
rule:
no-manifestmedLink text shows "claude.md" but points at github.comThe visible link text contains the domain `claude.md`, but the URL actually targets `github.com`. This is a phishing/smuggling pattern — the reader sees one host, the agent fetches another. Either update the text or the URL so they match.▾
Link text shows "claude.md" but points at github.com
The visible link text contains the domain `claude.md`, but the URL actually targets `github.com`. This is a phishing/smuggling pattern — the reader sees one host, the agent fetches another. Either update the text or the URL so they match.
73**Expected output**: a prioritized SERP brief plus the standard handoff summary for `memory/research/`.
74
75- **Reads**: goals, market inputs, tool data, and prior strategy from [CLAUDE.md](https://github.com/aaron-he-zhu/seo-geo-claude-skills/blob/main/CLAUDE.md) and the shared [State Model](https://github.com/aaron-he-zhu/seo-geo-claude-skills/blob/main/references/state-model.md) when available.← text→claude.md · href→github.com
76- **Writes**: a user-facing analysis and reusable summary.
77- **Promotes**: durable keyword priorities, competitor facts, and pending strategy decisions to `memory/hot-cache.md`, `memory/open-loops.md`, and `memory/research/`.
medLink text shows "skill-contract.md" but points at github.comThe visible link text contains the domain `skill-contract.md`, but the URL actually targets `github.com`. This is a phishing/smuggling pattern — the reader sees one host, the agent fetches another. Either update the text or the URL so they match.▾
Link text shows "skill-contract.md" but points at github.com
The visible link text contains the domain `skill-contract.md`, but the URL actually targets `github.com`. This is a phishing/smuggling pattern — the reader sees one host, the agent fetches another. Either update the text or the URL so they match.
80### Handoff Summary
81
82> Emit the standard shape from [skill-contract.md §Handoff Summary Format](https://github.com/aaron-he-zhu/seo-geo-claude-skills/blob/main/references/skill-contract.md).← text→skill-contract.md · href→github.com
83
84## Data Sources
medLink text shows "security.md" but points at github.comThe visible link text contains the domain `security.md`, but the URL actually targets `github.com`. This is a phishing/smuggling pattern — the reader sees one host, the agent fetches another. Either update the text or the URL so they match.▾
Link text shows "security.md" but points at github.com
The visible link text contains the domain `security.md`, but the URL actually targets `github.com`. This is a phishing/smuggling pattern — the reader sees one host, the agent fetches another. Either update the text or the URL so they match.
84## Data Sources
85
86Optional integrations: ~~SEO tool, ~~search console, ~~AI monitor. Before fetching third-party SERP pages, apply [SECURITY.md §Scraping Boundaries](https://github.com/aaron-he-zhu/seo-geo-claude-skills/blob/main/SECURITY.md). Without tools, ask for target keywords, SERP screenshots or top-10 URLs, and search context. See [CONNECTORS.md](https://github.com/aaron-he-zhu/seo-geo-claude-skills/blob/main/CONNECTORS.md).← text→security.md · href→github.com
87
88## Instructions
medLink text shows "connectors.md" but points at github.comThe visible link text contains the domain `connectors.md`, but the URL actually targets `github.com`. This is a phishing/smuggling pattern — the reader sees one host, the agent fetches another. Either update the text or the URL so they match.▾
Link text shows "connectors.md" but points at github.com
The visible link text contains the domain `connectors.md`, but the URL actually targets `github.com`. This is a phishing/smuggling pattern — the reader sees one host, the agent fetches another. Either update the text or the URL so they match.
84## Data Sources
85
86Optional integrations: ~~SEO tool, ~~search console, ~~AI monitor. Before fetching third-party SERP pages, apply [SECURITY.md §Scraping Boundaries](https://github.com/aaron-he-zhu/seo-geo-claude-skills/blob/main/SECURITY.md). Without tools, ask for target keywords, SERP screenshots or top-10 URLs, and search context. See [CONNECTORS.md](https://github.com/aaron-he-zhu/seo-geo-claude-skills/blob/main/CONNECTORS.md).← text→connectors.md · href→github.com
87
88## Instructions
medLink text shows "analysis-templates.md" but points at github.comThe visible link text contains the domain `analysis-templates.md`, but the URL actually targets `github.com`. This is a phishing/smuggling pattern — the reader sees one host, the agent fetches another. Either update the text or the URL so they match.▾
Link text shows "analysis-templates.md" but points at github.com
The visible link text contains the domain `analysis-templates.md`, but the URL actually targets `github.com`. This is a phishing/smuggling pattern — the reader sees one host, the agent fetches another. Either update the text or the URL so they match.
1018. **Generate Recommendations** — summarize Key Findings, minimum Content Requirements to Rank, SERP Feature Strategy, a Recommended Content Outline, and Next Steps.
102
103> **Reference**: See [references/analysis-templates.md](https://github.com/aaron-he-zhu/seo-geo-claude-skills/blob/main/research/serp-analysis/references/analysis-templates.md) for the compact templates used in each step.← text→analysis-templates.md · href→github.com
104
105## Example
medLink text shows "example-report.md" but points at github.comThe visible link text contains the domain `example-report.md`, but the URL actually targets `github.com`. This is a phishing/smuggling pattern — the reader sees one host, the agent fetches another. Either update the text or the URL so they match.▾
Link text shows "example-report.md" but points at github.com
The visible link text contains the domain `example-report.md`, but the URL actually targets `github.com`. This is a phishing/smuggling pattern — the reader sees one host, the agent fetches another. Either update the text or the URL so they match.
105## Example
106
107See [references/example-report.md](https://github.com/aaron-he-zhu/seo-geo-claude-skills/blob/main/research/serp-analysis/references/example-report.md) for the full "how to start a podcast" sample.← text→example-report.md · href→github.com
108
109## Advanced Analysis
skillox.io/r/crawl-b7z8n1jd19iqv54lujkbqdt8