volatility-regime-monitor

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's workflow and data instructions (SKILL.md and references/data-queries.md) explicitly direct running shared scripts (../findata-toolkit-cn/scripts/views_runner.py) to fetch market data from public third-party sources (e.g., 东方财富 via stock_zh_a_hist and the general "第三方数据平台/开源行情" noted in references/methodology.md), and that fetched content is read and used to drive risk/positioning decisions, so untrusted third‑party content can materially influence agent behavior.