clinical-trial-protocol-skill

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill explicitly queries and ingests public regulatory and trial data (e.g., ClinicalTrials.gov via the clinicalTrials.gov MCP server using search_clinical_trials/get_trial_details in references/01-research-protocols.md, and FDA database URLs described in SKILL.md), and the agent is expected to read and synthesize those third‑party records (which include user/submitter-provided trial entries) as part of its workflow, exposing it to untrusted external content.