linkedin-post-research

SUSPICIOUS: The skill's purpose and capabilities broadly align, and it uses Apify's official API rather than an unrelated exfiltration endpoint. Risk comes from forwarding an Apify token to run a community-maintained third-party scraping actor with limited provenance and from using token-in-URL examples; this is more a trust and credential-handling concern than confirmed malicious behavior.