clinicaltrials-database

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill directly fetches public third‑party content via HTTPS calls to the ClinicalTrials.gov API (BASE_URL https://clinicaltrials.gov/api/v2 in scripts/query_clinicaltrials.py, e.g., search_studies and get_study_details) and ingests/displayes free‑text fields such as descriptionModule, eligibilityModule, and contactsLocationsModule from registry records that the agent is expected to read and summarize, so untrusted external content could influence the agent.