dcf-model

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill's SKILL.md (Step 1: "Data Retrieval and Validation") explicitly instructs the agent to use "Web Search/Fetch" and external SEC filings/analyst reports and to record source URLs in cell comments, meaning the agent will ingest and act on untrusted public third‑party content that can materially influence modeling decisions.