sales-skrapp

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md explicitly instructs using the Chrome extension to extract emails from LinkedIn and Sales Navigator (Step 3 — "Chrome Extension" and examples), and the skill also calls Skrapp API endpoints that ingest contact data from public social profiles and websites, so the agent will consume untrusted, user-generated third‑party content as part of its workflow.