El skill robots.txt te ayuda a gestionar cómo los buscadores y bots de IA rastrean tu sitio web. Puedes validar un robots.txt existente para detectar errores de sintaxis y problemas lógicos, generar uno desde cero adaptado a tu CMS, o auditarlo con criterio SEO para identificar bloqueos peligrosos, problemas de crawl budget o directivas incorrectas. Compatible con WordPress, Shopify, sitios estáticos y cualquier tecnología.
---
name: robots-txt
description: "Validate, generate, and audit robots.txt files for SEO. Use this skill whenever the user mentions robots.txt, crawler directives, bot blocking, crawl control, AI crawler management, or asks about controlling how search engines or AI bots crawl their website. Also trigger when the user wants to check if their robots.txt has errors, wants to generate a new robots.txt from scratch, needs to audit an existing robots.txt for SEO issues, wants to block or allow specific bots (like GPTBot, CCBot, ClaudeBot, Googlebot, Bingbot), or asks about crawl budget optimization. Trigger even if the user just pastes a robots.txt and asks 'is this ok?' or 'review this'. Works for any CMS or static site."
---
# robots.txt Skill — Validate, Generate & Audit
This skill handles three core workflows for robots.txt files: **validation** (syntax and logic checking), **generation** (creating new files from scratch based on site needs), and **auditing** (SEO-focused review of existing files for issues and improvements).
## Quick Reference: robots.txt Fundamentals
Before doing anything, internalize these rules — they're the foundation for every validation, generation, and audit task:
### Syntax Rules (RFC 9309)
- The file MUST be served at the root: `https://domain.com/robots.txt`
- Each record starts with one or more `User-agent:` lines
- Valid directives: `User-agent`, `Disallow`, `Allow`, `Sitemap`, `Crawl-delay` (unofficial but widely supported)
- Directives are case-insensitive (`disallow` = `Disallow`), but path values are case-sensitive (`/Admin/` ≠ `/admin/`)
- An empty `Disallow:` means "allow everything" for that user-agent
- A missing or empty robots.txt = everything is allowed
- Comments start with `#` and can appear on their own line or after a directive
- Blank lines separate records (groups of directives for a user-agent)
- `Sitemap:` is a standalone directive (not tied to any user-agent block) and must use an absolute URL
- Wildcards: `*` matches any sequence of characters; `$` anchors to end of URL (Google/Bing support these)
- Maximum recommended file size: 500 KiB (Google may stop processing beyond this)
### How Search Engines Pick Rules
- Google/Bing: the **most specific** (longest matching path) rule wins, regardless of order. In ties, `Allow` wins.
- Other crawlers: typically the **first matching rule** wins.
- Each crawler uses the **most specific user-agent block** that matches its name. If none matches, it falls back to `User-agent: *`.
- If a crawler has a specific block, it ignores the `*` block entirely — the rules are NOT merged (except Google, which merges multiple blocks for the same user-agent).
### Critical SEO Considerations
- `Disallow` does NOT mean "noindex" — Google can still index a URL if external links point to it. Use `noindex` meta tag or `X-Robots-Tag` header to prevent indexing.
- Blocking CSS/JS files prevents Google from rendering pages properly — avoid this.
- Blocking a URL with a canonical tag means Google can't see the canonical — bad for deduplication.
- Blocking parameterized URLs is good for crawl budget but bad if those pages have canonical tags.
- `Sitemap:` in robots.txt is supplementary; always submit sitemaps via Search Console too.
- `Crawl-delay` is ignored by Googlebot but respected by Bingbot and Yandex.
- robots.txt is PUBLIC — never list sensitive paths in it (security through obscurity is a bad idea).
### AI Crawler Landscape (2025-2026)
Known AI training bots to block: GPTBot, Google-Extended, anthropic-ai, ClaudeBot, CCBot, FacebookBot, Bytespider, Applebot-Extended, Diffbot, Omgili, img2dataset, cohere-ai, AI2Bot.
Known AI search/RAG bots to allow explicitly: ChatGPT-User, PerplexityBot, YouBot.
---
## Workflow 1: VALIDATE a robots.txt
When the user provides a robots.txt (as text, file, or URL to fetch), run validation manually.
### Step 1: Analyze the file
Check for:
- Syntax errors (invalid directives, missing user-agent before rules, malformed lines)
- Logic errors (conflicting Allow/Disallow, overly broad blocks, duplicate rules)
- SEO warnings (blocking CSS/JS, missing Sitemap directive, blocking crawlers from canonical pages)
- AI crawler coverage (whether known AI training bots are addressed)
- Best practice violations (sensitive paths exposed, missing wildcard user-agent)
### Step 2: Interpret and present results
Group findings by severity:
1. **ERRORS** — Broken, causes unexpected crawler behavior
2. **WARNINGS** — Could hurt SEO or lead to unintended blocking
3. **INFO** — Suggestions
For each issue, explain **what** it is, **why** it matters, and **how** to fix it.
### Step 3: Offer a corrected version
Generate a corrected robots.txt and show it inline. Do NOT write to disk.
---
## Workflow 2: GENERATE a robots.txt
When the user wants to create a robots.txt from scratch, gather requirements first.
### Step 1: Gather context
Infer from context or ask only what's missing:
1. **CMS/platform** (WordPress, Shopify, Next.js, custom, etc.)
2. **Site type** (ecommerce, blog, SaaS, corporate, etc.)
3. **AI crawler policy** (block training only, block all AI, allow all)
4. **Sitemap URL**
### Step 2: Generate the file
**CRITICAL RULES:**
- **Only include Disallow rules for paths that actually exist on the site.** Do NOT invent or assume paths. If you haven't confirmed a path exists (via sitemap, crawl, or the user), do not include it.
- **No comments.** Do not add `#` comment lines. The file must be clean and minimal.
- **No header blocks.** No "last updated", no contact info, no purpose explanation.
- Group blocks logically: wildcard `*` first, then AI training bots (Disallow: /), then AI search bots (Allow: /).
- `Sitemap:` goes at the very bottom.
- Never block CSS, JS, or image files needed for rendering.
**Only add AI crawler blocks if the user requests an AI policy.** If they don't mention AI bots, omit those blocks entirely.
Present the generated robots.txt inline in the conversation. Do NOT write to disk.
### Step 3: Validate the generated file
Manually check the generated file for syntax errors and logic conflicts. Report any issues.
---
## Workflow 3: AUDIT a robots.txt (SEO Review)
When the user wants an in-depth SEO audit of an existing robots.txt.
### Step 1: Obtain the file
If the user provides a URL, fetch `{url}/robots.txt`. If they paste text, use that directly.
### Step 2: Run the validation script
Same as Workflow 1, Step 1.
### Step 3: Deep SEO analysis
Go beyond syntax validation. Analyze:
1. **Crawl Budget Impact**: Are there patterns that waste crawl budget? (e.g., not blocking faceted nav, internal search, paginated archives)
2. **Indexation Risk**: Are important pages accidentally blocked? Are canonical-tagged pages blocked?
3. **AI Bot Strategy**: Is there a coherent AI crawler strategy? Are they missing important AI bots? Are they blocking AI search bots when they should only block training bots?
4. **Competitive Analysis**: Based on the site type, what are they missing compared to industry best practices?
5. **Security Exposure**: Are sensitive paths being revealed in the robots.txt?
6. **Completeness**: Is the file missing common directives for the detected CMS/platform?
7. **Conflict Detection**: Do any Allow/Disallow rules conflict? Which one would win for Google vs other crawlers?
### Step 4: Generate audit report
Present findings as a structured analysis with:
- Executive summary (1-2 sentences on overall health)
- Critical issues (must-fix)
- Recommended improvements (should-fix)
- Nice-to-have optimizations
- A revised robots.txt with all recommendations applied
---
## Common Patterns Reference
These are **reference patterns only**. Only include a Disallow rule if the path has been confirmed to exist on the specific site being analyzed.
### WordPress (confirmed paths)
```
User-agent: *
Disallow: /wp-admin/
Allow: /wp-admin/admin-ajax.php
Disallow: /wp-includes/
Disallow: /?s=
Sitemap: https://example.com/sitemap.xml
```
### Shopify (confirmed paths)
```
User-agent: *
Disallow: /admin
Disallow: /cart
Disallow: /checkout
Disallow: /account
Disallow: /*?*sort_by*
Disallow: /*?*q=*
Sitemap: https://example.com/sitemap.xml
```
### SaaS / Web Application (confirmed paths only)
```
User-agent: *
Disallow: /app/
Disallow: /dashboard/
Disallow: /api/
Disallow: /admin/
Disallow: /login
Disallow: /register
Sitemap: https://example.com/sitemap.xml
```
### AI Crawler Block (Training Only — Allow AI Search)
```
User-agent: GPTBot
Disallow: /
User-agent: Google-Extended
Disallow: /
User-agent: anthropic-ai
Disallow: /
User-agent: ClaudeBot
Disallow: /
User-agent: CCBot
Disallow: /
User-agent: FacebookBot
Disallow: /
User-agent: Bytespider
Disallow: /
User-agent: Applebot-Extended
Disallow: /
User-agent: Diffbot
Disallow: /
User-agent: cohere-ai
Disallow: /
User-agent: AI2Bot
Disallow: /
User-agent: ChatGPT-User
Allow: /
User-agent: PerplexityBot
Allow: /
User-agent: YouBot
Allow: /
```
---
## Important Reminders
- All generation and validation happens inline in the conversation. Do NOT write to disk — the user copy-pastes it themselves.
- **Never invent paths.** Only Disallow paths confirmed to exist on the specific site (found in sitemap, visible in nav, or confirmed by the user).
- **No comments in the output.** Clean file only.
- Be concise. A minimal robots.txt is better than a bloated one with guessed rules.
- If the user doesn't mention AI bots, don't add AI crawler blocks.