pubchem-database

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill programmatically fetches and parses public PubChem content from open PUG-REST/PUG-View endpoints (e.g., https://pubchem.ncbi.nlm.nih.gov/rest/pug/compound/{cid}/assaysummary/JSON and PUG-View in scripts/bioactivity_query.py and scripts/compound_search.py), meaning it ingests third‑party public data that the agent reads and interprets.