kegg-database

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's helper module (scripts/kegg_api.py) explicitly fetches data from the public KEGG REST API (https://rest.kegg.jp) and the SKILL.md workflows parse and act on that returned content (e.g., using kegg_list/kegg_link outputs to decide subsequent kegg_get calls), so external KEGG responses can directly influence the agent's actions.