zinc-database

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill programmatically fetches and parses public data from ZINC's CartBlanche22 API and file repository (e.g., https://cartblanche22.docking.org/ and https://files.docking.org/zinc22/), ingesting third‑party supplier/catalog/SMILES records that the agent is expected to read and interpret, so untrusted external content could carry indirect prompt-injection risk.