market-data

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md shows the agent calling the public /stocks/news endpoint (https://api.eng0.ai/api/data/stocks/news) to fetch third‑party news articles (title/description/author/publisher/url) that the agent is expected to read and use (sentiment and article content) for decisions or reports, thereby exposing it to untrusted external content.