cellxgene-census

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill programmatically opens and queries the public CZ CELLxGENE Census (via cellxgene_census.open_soma and calls like get_obs, get_anndata, axis_query), ingesting dataset metadata and user-contributed public data that the agent is expected to read and interpret.