corporate_spy

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill scrapes and downloads announcements and PDFs directly from public Indian stock-exchange websites (NSE/BSE) and then extracts/reads their text (including via OCR), meaning it ingests open/public third-party content as part of its workflow.