biostudies-arrayexpress-skill

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). This skill explicitly fetches public BioStudies/ArrayExpress data from https://www.ebi.ac.uk/biostudies/api/v1 (see SKILL.md base_url) via scripts/rest_request.py, parses the JSON and returns compact summaries the agent is expected to read and act on, so untrusted third‑party content can influence agent behavior.