clinvar-database

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). This skill instructs the agent to fetch and parse public ClinVar content (via the ClinVar web interface, NCBI E-utilities API, and FTP at ftp.ncbi.nlm.nih.gov), which is an open third-party source containing submitter-provided records and free-text evidence that the agent will read and interpret, exposing it to untrusted user-generated content.