linkedin-outreach

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's workflow explicitly scrapes and ingests public LinkedIn profiles and search results via Apify actors (e.g., apify/linkedin-profile-scraper and apify/google-search-scraper) and uses that user-generated third-party content (plus Perplexity enrichment) to generate personalized messages and drive outreach decisions, creating a clear vector for indirect prompt injection.