theme-detector

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly scrapes public FINVIZ pages (finviz_industry_scanner.py and SKILL.md "public" FINVIZ mode) and performs WebSearch-based narrative confirmation (Step 4 / methodology), and those external, untrusted web results are read and used to adjust Confidence, Lifecycle, and reporting—so third-party content directly influences agent decisions.