The Agent Skills Directory

External Data Ingestion (Indirect Prompt Injection Surface): The skill is designed to process external documents, including SEC filings (10-K), earnings transcripts, and company websites. As these are untrusted external sources, they represent a surface for indirect prompt injection. While this is a standard requirement for the skill's functionality, it is a point for review when processing data from less reputable sources.
Standard Package Installation: In Task 4, the instructions guide the installation of well-known Python data science libraries (matplotlib, seaborn, pandas, numpy, plotly) to facilitate chart generation. These are industry-standard tools for the requested task and are considered safe.
Dynamic Execution for Visualization: The skill generates and executes Python scripts to produce financial charts. This dynamic code generation is localized to data visualization (matplotlib/plotly) and is a core component of the institutional reporting workflow.
Structured Workflow Constraints: The skill implements strict 'One Task at a Time' execution rules. This is a design choice to ensure quality control and prevent context overflow during complex financial modeling, rather than a security-relevant behavior override.

initiating-coverage