macro-liquidity

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill's Execution Steps explicitly require using web_search to fetch live data from public third-party sites (e.g., NewYorkFed/Treasury pages, TradingView/financial news, Bank of Japan) for Fed balance sheet, SOFR, MOVE, USDJPY and spreads, and those fetched values are used to compute net liquidity and drive portfolio/hedging recommendations—meaning untrusted web content can directly influence agent decisions.