akshare-skill

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The SKILL.md and reference files show the CLI/Python wrappers explicitly fetch and parse data from public third-party sites (e.g., target URLs such as data.eastmoney.com, chinamoney.com.cn, jisilu.cn, currencyscoop.com listed in references/*.md and SKILL.md), so the agent ingests untrusted public web content as part of its workflow which can materially influence subsequent analysis or actions.