tougu-writer-factory

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly fetches market data and news from public third-party sources (e.g., via akshare and web search / 东方财富/同花顺 as described in assets/market_data.py, scripts/market_data.md and references/step1.md), and those external inputs are read and used by the agent to generate articles and drive self-evaluation, so untrusted third‑party content can materially influence its actions.