bindingdb-database

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill explicitly fetches and ingests public data from BindingDB (e.g., the REST API at https://www.bindingdb.org/axis2/services/BDBService and the Download page https://www.bindingdb.org/bind/chemsearch/marvin/Download.jsp) and the SKILL.md workflows show the agent reading and using those external records to drive queries, rankings, and ML/dataset decisions, so third‑party content can materially influence actions.