apify-ultimate-scraper

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly instructs scraping and ingesting public, user-generated third-party content (e.g., SKILL.md and references/workflows/* such as references/workflows/knowledge-base-and-rag.md and content-and-seo.md which call apify/website-content-crawler and apify/rag-web-browser to fetch site content, social media posts, Reddit, Google Search results, etc.) and then feeding that content into AI nodes or decision pipelines, so untrusted external pages can materially influence agent actions.