geo-database

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly downloads and parses public, user-submitted GEO records and files from NCBI E-utilities and the GEO FTP (e.g., esearch/esummary endpoints and https://ftp.ncbi.nlm.nih.gov/geo/series/), and the agent is expected to read and act on that untrusted third-party metadata/content as part of searches, dataset selection, and downstream analysis.