EdgarTools

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly fetches and parses public SEC content (SEC quarterly indexes, SEC RSS feed, SEC Company Facts API, and XBRL files attached to filings) and instructs the agent to search and interpret filing text (e.g., filing.search(), filing.xbrl()), so untrusted third‑party document text can directly influence analysis and subsequent actions.