stock-analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly fetches public third‑party content via AKShare (e.g., ak.stock_news_em and ak.stock_comment_em used in core/akshare_provider.py and listed in SKILL.md as "个股新闻" / "千股千评") and the code/docs (NewsAnalyzer, GroupReporter, SKILL.md) show that those untrusted news/comments are read and used in news‑sentiment and scoring workflows that influence trading recommendations, creating a clear risk of indirect prompt injection from external content.