sec-filing-reader

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill explicitly fetches and ingests public SEC/EDGAR content (e.g., https://www.sec.gov/files/company_tickers.json, the EFTS search endpoints like https://efts.sec.gov/..., and filing pages under https://www.sec.gov/Archives/edgar/data/), and the agent is required by SKILL.md to read and act on those third‑party documents to drive analysis and next actions, exposing it to untrusted public content that could enable indirect prompt injection.