opentargets-database

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). This skill directly queries the public Open Targets GraphQL API (https://api.platform.opentargets.org/api/v4/graphql) and ingests untrusted third‑party content — e.g., returned "description", "literature", "mechanismOfAction", and evidence rows — which the SKILL.md explicitly instructs the agent to read and use to drive target prioritization and follow-up actions, so external content could materially influence behavior.