equity-research-cn

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill's required data-preparation step in SKILL.md calls the data-acquisition dependency (fetch_stock.py / fetch_financial.py) and the Appendix explicitly lists public third-party sources like akshare and yfinance, which the agent ingests and uses to drive financial analysis and valuation decisions—exposing it to untrusted open-web content that can influence actions.