leadership-change-outreach
Pass
Audited by Gen Agent Trust Hub on Mar 14, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: Communicates with the Apollo API (
api.apollo.io) to perform lead searches and profile enrichment. Apollo is a well-known service for business data, and these operations are consistent with the skill's stated purpose of identifying leadership changes. - [COMMAND_EXECUTION]: Orchestrates the use of internal agent capabilities including
apollo-lead-finderandemail-draftingto process workflow steps. - [PROMPT_INJECTION]: The skill presents an indirect prompt injection surface as it ingests untrusted data from external sources, specifically Apollo search results and LinkedIn profile content (enriched in Step 3). This data is used to interpolate personalization hooks into email drafts. However, the skill provides multiple human review checkpoints (at Steps 1, 2, 3, and 4) which allow for the inspection of ingested data and generated drafts before final delivery, effectively mitigating the risk of malicious instructions in external data influencing the agent.
Audit Metadata