financial-report

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill fetches and parses open/public third-party content (e.g., get_report_content uses session.get to download arbitrary URLs, _get_us_report_manual queries sec.gov, _get_ashare_report posts to cninfo, and _get_hk_report links to HKEX) and then interprets that data to compute indicators and select/download filings, so external page content could materially influence decisions or tool behavior.