ucsc-genome-browser

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly fetches and ingests data from the public UCSC REST API (e.g., https://api.genome.ucsc.edu/getData/sequence and /getData/track) and public track hubs (via hubUrl), which are open third‑party sources whose JSON/track contents are parsed and used to drive downstream decisions and outputs (e.g., choosing transcripts, computing sequences, writing FASTA), so untrusted external content could indirectly influence agent behavior.