tooluniverse-toxicology

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill's required workflow explicitly calls public third-party APIs (e.g., AOPWiki_list_aops / AOPWiki_get_aop, FAERS_count_reactions_by_drug_event and FAERS_calculate_disproportionality, DailyMed_parse_, CTD_get_) to fetch and interpret open/public data (including user-submitted FAERS reports and community AOP/CTD entries) and uses those results to drive analyses, evidence grading, and next actions, exposing the agent to untrusted third-party content that could carry indirect prompt injections.