Metabolomics Research

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). This skill explicitly queries and ingests data from public third-party databases (HMDB, MetaboLights, Metabolomics Workbench, PubChem) — see SKILL.md and the tool calls in python_implementation.py — and parses that untrusted study/metabolite content into its pipeline and fallback logic (reports, fallbacks to PubChem, study parsing), exposing the agent to potential indirect prompt injection via those public data sources.