apollo
Warn
Audited by Snyk on Feb 16, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.80). The skill queries and ingests lead data from the external Apollo.io service (per the SKILL.md description) and then explicitly extracts and reads the returned toolcall content via "refly workflow toolcalls" for the agent to process, which exposes it to untrusted third‑party content.
Audit Metadata