tushare-mcp

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill calls Tushare Pro tools that return public third‑party content (e.g., research_report and anns which include PDF download links) and the workflow explicitly instructs fetching external PDFs via "外部PDF直连+本地解析" (reference/research-notes-pdf.md), so the agent will fetch and interpret untrusted web-hosted documents that can influence subsequent actions.