a-stock-monitor

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill directly fetches and parses live data from public third‑party sources (e.g., hybrid_data_source.py uses requests to http://hq.sinajs.cn and various modules call akshare.ak.stock_zh_a_spot_em), and that untrusted external content is ingested and used by the selection/alerting scripts to generate trading signals and automated actions, so it can materially influence agent decisions.