dcf-model

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md explicitly requires fetching data from "the web" (Step 1: "Fetch data from MCP servers, user provided data, and the web" and "Web Search/Fetch
• Current prices, beta, debt and cash") and mentions SEC EDGAR/manual extraction and web market-data fetching (requirements include yfinance/requests), so the agent will ingest and act on open/public third‑party content that can materially influence valuation decisions.