tooluniverse-lipidomics

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill's SKILL.md "Core Tools" and "Workflow" explicitly instruct the agent to fetch and interpret data from public third-party resources (e.g., LipidMaps_search_by_name, HMDB_search, PubMed_search_articles, KEGG_get_pathway_genes, CTD_get_gene_diseases, DisGeNET_search_gene), meaning the agent will consume open web/DB content that can influence downstream decisions and thus could enable indirect prompt injection.