stock-research-executor

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill explicitly instructs research agents to use WebSearch, WebFetch, and mcp__web_reader__webReader to fetch and extract content from public URLs, news, industry reports, and other web sources (e.g., examples cite cninfo, Bloomberg, Caixin and "news/social media"), meaning the agent will read and interpret untrusted third‑party web content as part of its workflow.