tax-aware-rebalancing-planner

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's required workflow (SKILL.md Step 2 and references/data-queries.md) instructs running shared scripts (e.g., stock_data.py, sec_edgar.py, macro_data.py) that fetch live data from public third‑party sources such as yfinance/SEC EDGAR/FRED, which the agent is expected to read and use to drive rebalancing decisions—exposing it to untrusted public content that could inject instructions.