tooluniverse-sequence-retrieval

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). This skill explicitly fetches and ingests sequence records and annotations from public third-party repositories (NCBI and ENA) as shown in SKILL.md Phase 2 (e.g., NCBI_get_sequence, ena_get_sequence_fasta) and Examples, and those public/user-submitted records and annotations are parsed and used to drive tool selection and report generation, creating a clear avenue for indirect prompt injection.