sharia-screening

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The script's fetch_stock_data function (scripts/screen_stock.py) uses yfinance to pull public company data (e.g., longBusinessSummary, sector, industry, marketCap) from Yahoo/other public sources and the screener directly reads and uses that untrusted third-party content to make qualitative/quantitative verdicts, so external text/data can materially influence decisions.