tooluniverse-sequence-retrieval

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly fetches and ingests content from public third-party databases (NCBI and ENA) as part of its required Phase 2: Data Retrieval and Tool Reference (e.g., NCBI_get_sequence, ena_get_entry), and the agent is expected to read and act on that content to select tools, choose fallbacks, and produce reports—so untrusted external entries could materially influence behavior.