stock-analyzer

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill explicitly fetches and scrapes live content from public third‑party sites (e.g., https://www.eastmoney.com, so.eastmoney.com, quote.eastmoney.com, data.eastmoney.com and associated pages including news/公告/股吧) using web_fetch/Playwright/Selenium and then uses that scraped data (prices, 主力净比, news, announcements, forum content) to drive analysis and buy/sell recommendations, so untrusted third‑party content can materially influence the agent's decisions.