kol-discovery

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill explicitly fetches and ingests public, user-generated LinkedIn posts via the Apify actor "harvestapi/linkedin-post-search" (see SKILL.md Phase 2 and scripts/kol_discovery.py search_posts/guarded_apify_run + apify_dataset), and reads/interprets that content to score and drive KOL selection and downstream actions, so untrusted third‑party content can materially influence agent behavior.