v1.0.1

Apify Lead Generation

ReviewClawScan verdict for this skill. Analyzed May 1, 2026, 5:36 AM.

Analysis

The skill is broadly aligned with Apify lead scraping, but users should review it because it can run external Apify actors with your token and has risky export/network-handling signals.

GuidanceInstall only if you are comfortable letting the agent use your Apify account to run scraping actors. Review each selected Actor before use, prefer a dedicated Apify token, avoid opening exported CSVs in spreadsheets unless formula cells are sanitized, and confirm whether any saved output files are uploaded or only stored locally.

Findings (5)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Agent Goal Hijack

SeverityLowConfidenceMediumStatusNote

SKILL.md

This returns:
- Actor description and README
- Required and optional input parameters

The workflow brings remote Actor README content into the agent context; third-party documentation can contain instructions that should not override the user's task or the skill's safety rules.

User impactA malicious or compromised actor description could try to influence the agent's behavior during setup.

RecommendationTreat fetched Actor descriptions and READMEs as reference data only; do not follow any instructions in them that change the user's request, ask for secrets, or bypass validation.

Agentic Supply Chain Vulnerabilities

SeverityLowConfidenceHighStatusNote

SKILL.md

| Contact enrichment | `vdrmota/contact-info-scraper` | Emails, phones from URLs |

The skill relies on named Apify Actors, including third-party publishers, rather than only code contained in this package.

User impactRemote actor behavior, pricing, and permissions may change independently of this skill package.

RecommendationBefore running a new actor, review its publisher, permissions, recent changes, pricing, and whether it matches the user's requested lead source.

Cascading Failures

SeverityMediumConfidenceHighStatusConcern

reference/scripts/run_actor.js

const strValue = String(value);
if (strValue.includes(',') || strValue.includes('"') || strValue.includes('\n')) {
    return `"${strValue.replace(/"/g, '""')}"`;
}
return strValue;

The CSV export escapes separators but does not neutralize values beginning with spreadsheet-formula characters such as =, +, -, or @, even though the data comes from untrusted scraped web content.

User impactIf a scraped field contains a spreadsheet formula, opening the CSV in Excel or similar software could execute that formula or trigger unwanted network requests.

RecommendationPrefer JSON for untrusted data or update CSV export to prefix formula-like cells with a safe character before users open files in spreadsheets.

Tool Misuse and Exploitation

SeverityMediumConfidenceMediumStatusConcern

reference/scripts/run_actor.js

const content = require('fs').readFileSync(outputPath, 'utf-8');

The supplied static scan reports this local output-file read is combined with a network send. The SKILL.md describes local file export and Apify API use, but does not clearly disclose uploading saved lead files after export.

User impactSaved lead exports could be transmitted over the network in a way the user may not expect.

RecommendationReview and constrain any code path that reads saved output files for network upload; clearly disclose the destination or remove the transmission if local export is intended.

Permission boundary

Checks whether tool use, credentials, dependencies, identity, account access, or inter-agent boundaries are broader than the stated purpose.

Identity and Privilege Abuse

SeverityLowConfidenceHighStatusNote

SKILL.md

- `APIFY_TOKEN` configured in OpenClaw settings

The skill requires an Apify credential and the script uses it for authenticated API calls to start actors and download datasets.

User impactThe skill can use your Apify account to run actors, access run results, and potentially incur usage charges.

RecommendationUse a dedicated or least-privileged Apify token if available, monitor Apify usage, and approve actor runs that may cost credits.