chris-stock-master

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). This skill directly fetches and ingests public third‑party data (e.g., scripts/fetch_data.py uses yfinance.yahoo.com and akshare to retrieve ticker.get_info, recommendations, price_history and financial statements) and the agent reads and processes that untrusted, user/third‑party content as part of its analysis pipeline, exposing it to potential indirect prompt injection.