biorxiv-database

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill programmatically queries the public bioRxiv API (BASE_URL "https://api.biorxiv.org") and downloads paper metadata, abstracts, and PDFs from biorxiv.org as part of its normal workflow (see scripts/biorxiv_search.py and references/api_reference.md), so untrusted, user-generated preprint content is ingested and used to drive filtering and download decisions.