clinicaltrials-database

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). This skill explicitly fetches and ingests public, third-party ClinicalTrials.gov data via the API v2 (e.g., study['protocolSection']['eligibilityModule'], brief_summary and other free-text fields) and directs the agent to read and act on that content for patient-matching, summaries, and decisions, so untrusted user-contributed text could influence tool use or actions.