tooluniverse-gwas-drug-discovery

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly fetches and ingests open/public third‑party data (e.g., "Query GWAS Catalog" in SKILL.md Step 1 and the python_implementation.py calls to execute_tool("gwas_get_associations_for_trait") and other ExecuteTool calls to OpenTargets, ChEMBL, ClinicalTrials.gov and FDA APIs), and that external data is parsed and used to drive scoring, recommendations and follow-up actions — so untrusted third‑party content can materially influence agent decisions.