tooluniverse-cancer-genomics-tcga

Warn

Audited by Snyk on May 29, 2026

Risk Level: MEDIUM
Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

  • Third-party content exposure detected (high risk: 0.75). The required runtime workflow calls external tools/APIs (e.g., GDC_get_clinical_data, GDC_get_ssm_by_gene, GDC_get_survival, Progenetix_*, OncoKB_annotate_variant) that return dataset-derived text fields (e.g., diagnoses, stage labels, variant annotations) authored by third parties (public biomedical databases), which the agent then places into the LLM context.

Issues (1)

W011
MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata
Risk Level
MEDIUM
Analyzed
May 29, 2026, 05:25 AM
Issues
1
Security Audit — snyk — tooluniverse-cancer-genomics-tcga