hk-financial-statement

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md explicitly lists public third‑party data sources (see "数据源" naming 港交所披露易, 公司年报, 数据供应商, 券商研究) and the "使用方法" shows scripts that fetch/parse financial statements, so the agent ingests untrusted public content that directly influences analysis and actions.