convertible-bond-scanner

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill explicitly instructs running shared data scripts (references/data-queries.md -> ../findata-toolkit-cn/scripts/views_runner.py) to fetch market and company data from public third-party sources (AKShare, jisilu.cn, eastmoney, company announcements), which the agent ingests and uses to drive analysis and recommendations, so untrusted web content can materially influence decisions.