valuation-regime-detector

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's required workflow (references/data-queries.md) instructs running shared scripts (../findata-toolkit-cn/scripts/views_runner.py) to fetch live/historical market data from public third‑party sources (explicitly citing AKShare endpoints like stock_zh_index_daily_em and stock_financial_report_sina in references/methodology.md), which the agent is expected to read and use to drive analyses and decisions—exposing it to untrusted third‑party content that could carry indirect prompt injection risks.