cfo

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's required tooling explicitly includes "WebSearch — Benchmark data, market rates, comparable pricing," which mandates fetching and interpreting open/public web content (third-party market sites) to inform financial decisions, so untrusted external pages could influence actions.