china-stock-analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's scripts (notably scripts/data_fetcher.py) use akshare to fetch public A‑share data (e.g., ak.stock_individual_info_em, ak.stock_balance_sheet_by_report_em, ak.stock_zh_a_hist, ak.stock_dividend_cninfo, ak.index_stock_cons) from open/public financial websites and announcements, and the agent reads and analyzes that external content as part of its workflow, exposing it to untrusted third‑party input.