leadership-change-outreach

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly calls Apollo Free Search and Apollo Enrichment (ingesting LinkedIn profile data, employment_history, emails, and linkedin_url) and optionally a linkedin-profile-post-scraper to fetch public, user-generated LinkedIn posts — and the agent is required to read and interpret that third‑party content to detect changes, score relevance, and draft outreach, so untrusted external content can materially influence actions.