akshare-stock

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's adapter (adapters/akshare_adapter.py) directly fetches public third‑party data via akshare (e.g., stock_news_em, stock_research_report_em) and the runtime code (main.py and stock_pick/stock_overview paths plus formatter.render_output) parses and uses that news/研报 content (including URLs and ratings) to drive recommendations and outputs, so untrusted web content can materially influence decisions.