apify-actorization

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill includes examples that run web crawlers against arbitrary startUrl inputs (e.g., "apify run --input '{"startUrl":"https://example.com"}'" and the JS/Python examples using PlaywrightCrawler with await crawler.run([startUrl]) that read page.title), and the CLI/Dockerfile examples reference installing binaries from public GitHub releases—meaning it explicitly fetches and interprets content from open/public third‑party sites.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill explicitly documents a monetization API call: "await Actor.charge('result')", and describes configuring Pay-Per-Event monetization in the Apify Console. That is a specific platform billing/charge function (an API to bill/collect money for events), not a generic tool like a browser or HTTP requester. Because it exposes an explicit "charge" operation to move money, it constitutes direct financial execution capability.