apify-lead-generation

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md explicitly instructs running Apify actors that scrape public, user-generated content from Google Maps, Instagram, TikTok, Facebook, LinkedIn, YouTube and Google Search (see "Scrape leads from multiple platforms" and the actor list) and to fetch actor schemas via mcpc from mcp.apify.com and then "Summarize results" in chat, which means the agent will ingest and act on untrusted third‑party content as part of its workflow.