apify-ultimate-scraper

Pass

Audited by Gen Agent Trust Hub on Jun 21, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCREDENTIALS_UNSAFEPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill directs users to install the @apify/mcpc CLI tool. This package is maintained by Apify, which is a well-known and established service in the automation and scraping industry.
  • [CREDENTIALS_UNSAFE]: The documentation mentions the APIFY_TOKEN and instructs the user to store it in a .env file. This is a recognized safe practice for local secret management and does not constitute a hardcoded credential finding.
  • [PROMPT_INJECTION]: This skill possesses an attack surface for indirect prompt injection due to its core function of processing external web content. 1. Ingestion points: Web data scraped from platforms like Instagram, Facebook, and TikTok as described in SKILL.md. 2. Boundary markers: The instructions do not provide explicit delimiters or instructions to the agent to ignore commands within the scraped data. 3. Capability inventory: The skill uses the mcpc tool and performs data summarization. 4. Sanitization: No sanitization or validation of the scraped data is mentioned before it is processed by the AI.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 21, 2026, 07:59 PM
Security Audit — agent-trust-hub — apify-ultimate-scraper