fund-flow-monitor

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's required workflow (references/data-queries.md and references/methodology.md) instructs running shared scripts that fetch/ingest live market data from public third-party sites (e.g., 东方财富网, 同花顺, AKShare, Wind), and that external data is explicitly used to drive the analysis and decisioning, so untrusted third‑party content can materially influence agent behavior.