sec-edgar-skill

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill uses EdgarTools to fetch and read public SEC EDGAR filings (e.g., get_filings, get_current_filings, Company(...).get_filings(), filing.text()/filing.items()/filing.search) from the open SEC website, causing the agent to ingest third-party public documents that could contain untrusted content.