tooluniverse-binder-discovery

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's mandatory workflow repeatedly fetches and ingests open/public third‑party data (e.g., ChEMBL/ChEMBL_get_target_activities, PubChem BioAssay, BindingDB, PDB, PubMed/EuropePMC preprints, OpenAlex, GPCRdb, Thera‑SAbDab) and requires the agent to read and use that content to drive decisions (scoring, docking, candidate selection and report text), so untrusted/user‑submitted sources like PubChem assays and preprints could materially influence the agent's actions.