lithium-supply-demand-gap-radar

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). This skill explicitly fetches and scrapes public third‑party websites for runtime data (see workflows/ingest.md and references/data-sources.md which list USGS, IEA, Fastmarkets/SMM, GlobalX ETF pages, ABS, CME, etc.), and those external pages are parsed and interpreted by the agent as part of its analysis, creating a clear avenue for indirect prompt injection from untrusted web content.