open-market-data

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's SKILL.md shows it fetches and parses open/public third-party sources (e.g., SEC EDGAR filings, Yahoo Finance, CoinGecko, Binance, World Bank, FRED, Finnhub) via CLI commands like "omd filing" and "omd quote", so an agent consuming those public, untrusted pages/filings as part of its workflow could be influenced by content and thus enable indirect prompt injection.