tooluniverse-crispr-screen-analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's SKILL.md includes runtime calls that fetch and ingest public third‑party content (e.g., PubMed_search in query_depmap_dependencies, Enrichr_submit_genelist/Enrichr_get_results in enrich_essential_genes, DGIdb_query_gene in prioritize_drug_targets/find_drugs_for_targets, and GEO_get_dataset/ArrayExpress_get_experiment) and those results are parsed and used to drive scoring/prioritization, so untrusted external content can materially influence the agent's decisions.