Governed ability
Update post SEO (All in One SEO)
aafm/aioseo-update-post Guarded write
Writes a post's SEO fields through All in One SEO's own data store (not post meta). URL fields are sanitized as URLs. Requires edit access to that post.
How it is governed
The same model as every ability in the plugin, stated for this one.
- Off until you enable it
Like every ability, Update post SEO (All in One SEO) ships switched off. You turn it on one at a time, and an update never widens access on its own.
- Guarded write
Writes stay conservative, and the plugin re-checks the capability before the call runs.
- Capability gated
A connection only sees Update post SEO (All in One SEO) if the user you connected can run it, and the plugin checks that capability again before it executes.
- Every call audited
The call is written to the log in your own database, denials included, with the argument keys but never the values.
See it in action
An illustrative run. Your real calls and data stay on your own site.
Try it with a prompt
Example requests you could paste to your agent.
Set the All in One SEO title and description on post 142.
Update the canonical URL and social image fields for this post in All in One SEO.
Adjust the robots settings for post 512 through All in One SEO.
These are illustrative example prompts. The agent runs them as the user you connected, checked against that user's capabilities and written to your audit log.
Frequently asked
Short answers for Update post SEO (All in One SEO).
How are the fields written?
It writes a post's SEO fields through All in One SEO's own data store, not post meta. URL fields are sanitized as URLs before storage.
What are the safeguards?
It requires edit access to that post, is a guarded write that is off by default and capability gated, and every write is recorded in the audit log.
Does it work without the plugin?
No. The ability exists only while All in One SEO is active on the site.
Governed by default, from the first call.
Update post SEO (All in One SEO) is off until you enable it, scoped to the user you connect, and logged like everything else. Turn on only what you need.
Every ability off until you enable it, capability-gated on every call.