tushare-data

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's required workflows (see SKILL.md "7. 公告 / 新闻 / 事件梳理" and related templates) and the references/数据接口.md explicitly instruct fetching and ingesting third-party public content (e.g., endpoints news, major_news, anns_d, research_report) which the agent must read and use to drive analysis and follow-up actions, exposing it to untrusted user-generated or public web content that could contain indirect prompt injections.