dividend-aristocrat-calculator

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's workflow and data-queries.md explicitly instruct running shared scripts (e.g., stock_data.py using yfinance and sec_edgar.py) and cite live public sources (company investor relations pages, SEC EDGAR, public price feeds), which the agent is expected to ingest and use to compute metrics and rankings—thus exposing it to untrusted third-party web content that can materially influence subsequent actions.