bioservices

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill actively fetches and parses data from open public third-party resources (e.g., UniProt via u.search/u.retrieve/u.mapping, KEGG via k.get and parse_kgml_pathway/pathway2sif, PSICQUIC via s.query, UniChem/ChEMBL/ChEBI lookups and the various scripts that call these APIs), so the agent ingests and interprets external, publicly-hosted content as part of its workflow.