The Agent Skills Directory

[EXTERNAL_DOWNLOADS]: The skill utilizes the @apify/mcpc package from the official NPM registry. This is a legitimate utility provided by the vendor for platform interaction.
[COMMAND_EXECUTION]: The skill executes local Node.js scripts and the mcpc CLI to automate data scraping. These commands are constrained to the skill's documented workflow and perform standard data processing tasks.
[DATA_EXFILTRATION]: User credentials, specifically the APIFY_TOKEN, are transmitted exclusively to official Apify API endpoints (api.apify.com and mcp.apify.com) for authentication purposes.
[PROMPT_INJECTION]: The skill ingests untrusted content from social media platforms (e.g., comments, profile bios). While this represents a surface for indirect prompt injection, the skill does not possess high-risk capabilities (such as arbitrary code execution or filesystem write access) that would allow for exploitation.

apify-audience-analysis