kol-engager-icp

SUSPICIOUS: the skill's purpose and capabilities mostly align, but it routes scraping and enrichment through several third-party Apify actors and forwards an Apify credential to code not published by the skill author. This is a coherent lead-gen workflow, not confirmed malware, yet it carries meaningful security and privacy risk from third-party actor trust and credential delegation.