finance-skills

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly instructs the agent to fetch and ingest data from open public sources (e.g., akshare-finance-data SKILL.md shows AkShare pulling from Sina Finance, East Money, Yahoo Finance and central bank websites and uses that data in build_stock_panel/event_study; finsight-research-guide likewise configures a Retrieval Agent to fetch SEC EDGAR, news APIs, Yahoo Finance, FRED), which are untrusted public/user-generated sources that the agent is expected to read and that can materially influence analysis and subsequent actions.