deco-apps-architecture

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's scripts/new.ts (documented in scripts-codegen.md and new-app-guide.md) explicitly clones public GitHub templates (https://github.com/deco-cx/app-template and mcp-oauth-template) as a required scaffolding step, which fetches and ingests untrusted third‑party repository content that can influence subsequent tooling and execution.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill is an architecture reference for a commerce integrations monorepo and explicitly lists payment-related integrations and actions. It documents platform-specific modules that perform commerce operations (e.g., VTEX "payment" and "orders" actions, Shopify order/draftOrderCalculate, apps list including "payments"), plus OpenAPI-generated clients and platform client implementations (VTEX clients, openapi/ files). Those are specific, platform APIs/tools intended to interact with e-commerce payment/order systems — i.e., they provide explicit functionality to execute payments/orders via platform APIs rather than being merely generic HTTP or browser tools. Therefore this skill contains direct financial execution capabilities.