esg-screener

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's required data-enhancement workflow (references/data-queries.md) instructs running shared scripts/views that fetch real-time ESG and market data from public third-party sites (e.g., 东方财富, 新浪, MSCI/third-party ESG feeds), which the agent is expected to read and use to compute ESG scores and screening decisions, exposing it to untrusted external content that can materially influence actions.