apify

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill explicitly exposes the agent to scraped public/web content via Apify actions (e.g., "Get Dataset Items", "Get Key-Value Store Record") and the Membrane proxy request described in SKILL.md, meaning the agent will fetch and read untrusted third-party content that could materially influence subsequent actions.