tooluniverse-metabolomics

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly queries public third‑party repositories (HMDB, MetaboLights, Metabolomics Workbench, PubChem) — e.g., SKILL.md and python_implementation.py show calls like tu.tools.HMDB_search, metabolights_get_study, metabolights_search_studies, MetabolomicsWorkbench_get_study and PubChem_get_CID_by_compound_name — and it parses and acts on those responses (including fallbacks and report generation), so untrusted public content could materially influence the agent's behavior.