biorxiv-database

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill directly fetches and ingests public, user-submitted bioRxiv content from the bioRxiv API (https://api.biorxiv.org) and direct site/pdf URLs (e.g., https://www.biorxiv.org/content/...), and the SKILL.md and scripts/biorxiv_search.py show the agent reads abstracts/metadata and uses those results to filter, decide downloads, and drive downstream actions.