financial-statement-analyzer

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's references/data-queries.md and workflow explicitly instruct running shared scripts and tool "views" that fetch financial data from public third-party sites (e.g., 同花顺, 新浪财经, 东方财富) and require the agent to ingest and act on that content for analysis, which exposes it to untrusted third‑party content that could enable indirect prompt injection.