apify-actorization

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's required workflow (e.g., SKILL.md and references/js-ts-actorization.md) explicitly instructs running crawlers with a user-provided startUrl (see "apify run --input '{"startUrl": ...}'") and examples using PlaywrightCrawler's requestHandler that reads page content (e.g., page.title()), which means the agent will fetch and interpret arbitrary public web pages/URLs as part of its normal operation.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill explicitly documents monetization and a charge API: it instructs configuring Pay Per Event monetization and shows code to charge users with await Actor.charge('result'). That is a specific, built-in function to bill/charge for events (i.e., move money), not a generic automation or API caller. Therefore it grants direct financial execution capability.