finsight-research-guide

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md explicitly states the Retrieval Agent "Fetches data from SEC filings, financial APIs, news" and the Financial Data Sources config lists public sources like "yahoo_finance" and "news_api", which the agent ingests and uses to drive analysis and reports, so it clearly consumes untrusted public third‑party web content that can influence actions.