market-top-detector

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly instructs fetching and ingesting public web data (Phase 1 WebSearch in SKILL.md) and auto-fetches a public TraderMonty GitHub Pages CSV (scripts/breadth_csv_client.py) plus FMP API quotes (scripts/fmp_client.py); those untrusted third-party sources are parsed and directly influence scoring and recommended actions, so they could enable indirect prompt-injection via manipulated external content.