pubchem-database

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). This skill directly fetches and processes public PubChem content (via PUG-REST and PUG-View endpoints such as https://pubchem.ncbi.nlm.nih.gov/rest/pug/... and PUG-View data/compound/... ), which are open third‑party sources (including deposited/public annotations and bioassay records) that the agent reads and interprets at runtime, so it is exposed to untrusted third‑party content.