stock-trading

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly fetches and interprets untrusted public web content — for example, multiple scripts call the Sina Finance API (https://hq.sinajs.cn) to load realtime quotes and strategy.md requires using "byted-web-search" to search news/资金面 — and those external results are used by the agent to drive trading decisions and execute actions.