metabolights-skill

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill explicitly calls the public MetaboLights API (base_url https://www.ebi.ac.uk/metabolights/ws) as shown in SKILL.md and scripts/rest_request.py, fetching and parsing public study JSON (user-submitted) which the agent reads/summarizes and can use to drive follow-up actions, so untrusted third‑party content could influence behavior.