institutional-flow-tracker

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's scripts and documentation explicitly fetch and parse public third‑party data (e.g., FinancialModelingPrep API calls in scripts/analyze_single_stock.py to https://financialmodelingprep.com/api/v3/institutional-holder/{symbol} and SKILL.md/README references SEC EDGAR and WhaleWisdom), and that external 13F data is directly read and used to generate signals and trading actions, so untrusted third‑party content can materially influence the agent's decisions.