bse-selection-analyzer

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly ingests public third-party market data (e.g., via findata-toolkit-cn views such as stock_bj_a_spot_em sourced from AKShare/东方财富 as described in references/data-queries.md and references/methodology.md) and uses that data as core inputs that materially drive analysis and recommendations, so untrusted external content can influence agent actions.