pubmed-database

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill programmatically fetches and ingests records from the public PubMed API (e.g., ESearch/EFetch/ESummary endpoints at eutils.ncbi.nlm.nih.gov), so the agent will read and interpret third-party, publicly authored articles/abstracts from PubMed that could contain untrusted content.