campaign-manager

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill explicitly fetches external target structures via curl from the public RCSB repository ("https://files.rcsb.org/download/{PDB_ID}.pdb"), which is an open third‑party source of user‑submitted data that the agent is expected to read and process as part of the pipeline, exposing it to potential indirect prompt injection from untrusted content.