data-acquisition

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's required runtime workflow (SKILL.md and scripts like scripts/fetch_stock.py, scripts/data_validator.py, scripts/fetch_financial.py, and scripts/fetch_macro.py) explicitly fetches and parses data from open/public third‑party sources (AkShare which scrapes 东方财富/新浪, Baostock, and yfinance), and that external content is read and used to drive cross‑validation and confidence/decisioning in downstream outputs.