finhay-market

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly fetches and returns third-party news/article content (e.g., GET /market/financial-data/global-news and GET /market/financial-data/global-news/:id, and stock events via GET /market/news) which the agent is expected to read as part of its workflow, exposing it to untrusted public content that could indirectly inject instructions or influence subsequent decisions.