chairman-daily-report

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly fetches third-party news and web search results via the QVeris API (see SKILL.md and scripts/fetch_company_news.py and fetch_market_data.py) and even scrapes public endpoints like Sina (scripts/fetch_sina_quote.py), then ingests and interprets that untrusted/news/social content in analyze_news_sentiment and risk_detection to produce PR and investment recommendations, so external content can materially influence actions.