financial-analysis-earnings

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill's workflow (SKILL.md Step 1) explicitly requires performing web searches to ingest consensus estimates and management commentary from arbitrary public web sources, and the scripts also fetch live data from public endpoints (Yahoo Finance and SEC EDGAR), so untrusted third‑party content is read and used to drive beat/miss decisions and guidance.