apify-influencer-discovery

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill runs Apify actors that scrape public social platforms (e.g., Instagram, Facebook, YouTube, TikTok) and the run_actor.js explicitly downloads dataset items from the Apify dataset endpoint (https://api.apify.com/v2/datasets/${datasetId}/items) which contain untrusted, user-generated third‑party content that the agent reads and uses to produce summaries/recommendations (see SKILL.md Steps 1–5 and reference/scripts/run_actor.js).

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The skill calls the Apify API at runtime (e.g., POST to https://api.apify.com/v2/acts/{author~actor}/runs?token=...) to start arbitrary Apify actors (such as apify/instagram-profile-scraper), which executes remote actor code required for the skill's operation.