estimate-analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly instructs the agent (SKILL.md Step 2 and the yfinance API reference) to fetch and interpret analyst estimates from the public Yahoo Finance site via the yfinance library (e.g., ticker.earnings_estimate, eps_trend, eps_revisions), so it ingests open third‑party data that the agent uses to drive analysis and decisions, creating a pathway for indirect prompt injection.