tooluniverse-pharmacovigilance

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill's mandatory workflow explicitly queries and ingests open/public third‑party sources (e.g., FAERS adverse event reports, DailyMed labels, PharmGKB, PubMed/BioRxiv/MedRxiv, ClinicalTrials.gov) and requires the agent to read and interpret those results to compute PRRs, prioritize signals, and generate recommendations, so untrusted/user‑submitted content can directly influence tool use and decisions.