prospect-enrich

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly calls third-party enrichment APIs (Stage 4: apollo_people_bulk_match / apollo:enrich-lead and Stage 5: Clay find-and-enrich-contacts-at-company) to ingest externally-sourced public contact/profile data and then uses returned fields (job title, seniority, phone) to set tiers, prioritize processing, and update HubSpot, so untrusted third-party content can materially influence agent decisions and actions.