lead-enrichment

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's required workflow instructs the agent to run Clay enrichment waterfalls that query external providers and public sources—explicitly LinkedIn enrichment, BuiltWith/public website tech signals, and intent providers like Bombora/G2/Apollo—which the agent must read and use to compute ICP scores, routing, and AI personalization, so untrusted third-party content can materially influence actions.