apify-public-registries
Fail
Audited by Gen Agent Trust Hub on Jun 13, 2026
Risk Level: CRITICALEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONDATA_EXFILTRATION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The documentation file
reference/european-company-data-institutions.mdcontains a reference tohttps://www.eubusinessregister.org/. This domain is blacklisted by security scanners as malicious. The file itself was flagged by antivirus scanners as suspicious due to the inclusion of this URL. - [COMMAND_EXECUTION]: Scripts in
reference/scripts/for Romania (RO), Germany (DE), and the United Kingdom (UK) utilizesubprocess.run()to invoke themcpcCLI tool. This is used to trigger Apify actors for data scraping and financial filing retrieval. - [DATA_EXFILTRATION]: The skill transmits company identifiers (IČO, KRS, NIP, CUI, LEI) and search keywords to multiple third-party government registries and the Apify platform. While necessary for the skill's purpose, this involves sending user-provided data to external endpoints.
- [PROMPT_INJECTION]: The skill is subject to Indirect Prompt Injection risks because it retrieves and processes data from various external registries and web pages.
- Ingestion points: Data is fetched from numerous REST/SOAP APIs and scraped from websites like
orsr.skandfinstat.skusing scripts in thereference/scripts/directory. - Boundary markers: No explicit delimiters or instructions are used to separate external data from the agent's instructions during interpolation into the context.
- Capability inventory: The skill possesses the capability to execute shell commands via
subprocess.run()to interact with themcpcutility. - Sanitization: While scripts use JSON parsing and regular expressions for data extraction, there is no evidence of content sanitization to prevent malicious instructions embedded in registry data from affecting agent behavior.
Recommendations
- CRITICAL: 1 infected file(s) detected - DO NOT USE
- Contains 2 malicious URL(s) - DO NOT USE
Audit Metadata