crm-integration

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly calls out Clay/Apollo enrichment (reference/clay-enrichment-patterns.md and the Integration Points / routing sections) that ingest data from domains and LinkedIn URLs (public/user-generated sources) and then the agent reads those enrichment results (get_existing_search) and writes them back to CRMs, so untrusted third-party content can directly influence subsequent tool actions.