akshare-stock

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's scripts (e.g., scripts/analyze_investment.py, get_realtime_quote.py, get_history_kline.py, get_valuation.py) call AKShare functions such as stock_zh_a_spot_em, stock_zh_a_hist and stock_individual_spot_xq (雪球/Xueqiu) to fetch live/public market and third‑party data which the agent directly reads and uses to compute scores and recommendations, so untrusted public content can materially influence its actions.