tooluniverse-systems-biology

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's workflow (Phase 3 in SKILL.md and the python_implementation.py pipeline) explicitly queries and ingests public third‑party databases—e.g., kegg_search_pathway, WikiPathways_search, pc_search_pathways, biomodels_search, Enrichr and Reactome tools—which include community- or user-curated content (WikiPathways, BioModels, Pathway Commons) and whose returned data are parsed and used to drive further actions (e.g., selecting top_pathway_id to fetch reactions), so untrusted external content can materially influence agent behavior.