apify-actor-development
Enables development, debugging, and deployment of Apify Actors for web scraping and automation, enhancing data processing capabilities.
Install this skill
or
21/100
Security score
The apify-actor-development skill was audited on Mar 4, 2026 and we found 7 security issues across 2 threat categories, including 3 critical. Review the findings below before installing.
Categories Tested
Security Issues
critical line 87
Eval function call - arbitrary code execution
SourceSKILL.md
| 87 | - **Sanitize crawled data** — Never pass raw HTML, URLs, or scraped text directly into shell commands, `eval()`, database queries, or template engines. Use proper escaping or parameterized APIs. |
critical line 125
Eval function call - arbitrary code execution
SourceSKILL.md
| 125 | - Pass raw crawled content into shell commands, `eval()`, or code-generation functions |
critical line 35
Piping content to bash shell
SourceSKILL.md
| 35 | > (e.g. `curl … | bash` or `irm … | iex`). Always use a package manager. |
low line 43
External URL reference
SourceSKILL.md
| 43 | If it is not logged in, check if the `APIFY_TOKEN` environment variable is defined (if not, ask the user to generate one on https://console.apify.com/settings/integrations and then define `APIFY_TOKEN |
low line 210
External URL reference
SourceSKILL.md
| 210 | Otherwise, the MCP Server url: `https://mcp.apify.com/?tools=docs`. |
low line 216
External URL reference
SourceSKILL.md
| 216 | - [https://crawlee.dev/llms.txt](https://crawlee.dev/llms.txt) - Crawlee quick reference documentation |
low line 217
External URL reference
SourceSKILL.md
| 217 | - [https://crawlee.dev/llms-full.txt](https://crawlee.dev/llms-full.txt) - Crawlee complete documentation |
Scanned on Mar 4, 2026
View Security DashboardRate this skill
Categorydevelopment
UpdatedMay 21, 2026
openclawapibackenddata-engineerml-ai-engineerbackend-developergrowth-marketerproduct-managerdevelopmentmarketingproduct
voidomin/Param_Adventures_Phase2