galaxy-training-material

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's WORKFLOW-VERIFICATION.md explicitly instructs fetching and inspecting .ga workflow files from public sources (raw.githubusercontent.com and the Dockstore API) and the data-library examples reference Zenodo URLs, so the agent is expected to read and act on untrusted public GitHub/Dockstore/Zenodo content which could materially influence tutorial updates and tool usage.