apollo-lead-finder

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). This skill explicitly calls Apollo's public APIs (People Search and Bulk People Match) and ingests profile data — names, titles, headlines, LinkedIn URLs and other free-text fields — as part of the Phase 1/Phase 2 search and enrich workflow in SKILL.md, and those returned third-party fields are read and used to decide enrichments and database upserts, so untrusted external content could potentially influence agent actions.