Apollo Automation

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill calls Apollo API endpoints (e.g., APOLLO_PEOPLE_SEARCH, APOLLO_PEOPLE_ENRICHMENT with linkedin_url and domain parameters) and ingests contact and profile data (often sourced from public websites and social media/LinkedIn) which the agent is expected to read and interpret, exposing it to untrusted third-party user-generated content.