detect-shanghai-silver-stock-drain

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill directly scrapes and ingests data from public third‑party websites (e.g., CEIC, SHFE, SGE, Yahoo Finance, MacroMicro, CME) using Selenium/requests and PDF/SVG parsing as shown in references/data-sources.md and scripts like fetch_shfe_stock.py, fetch_ceic_silver.py and fetch_ceic_svg.py, so the agent will read and interpret untrusted open‑web content as part of its workflow.