company-research-analyst

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill explicitly directs the agent to perform external web searches—e.g., "外部公开信息搜索（用 tavily-search skill 或其他可用的网络搜索工具）" and "如果 stock-data 返回的财务指标不完整，立即用网络搜索…补充缺失数据"—which requires ingesting public third‑party content (company announcements, broker reports, media) that the agent must read and that can materially affect analysis and actions.