deco-apps-vtex-porting

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill clearly performs runtime fetches from external VTEX endpoints (e.g., client.ts's vtexFetch / vtexFetchWithCookies and the loaders/actions that call them) which ingest untrusted, store/user-generated API responses that are parsed by transform.ts and drive subsequent actions, so third‑party content can materially influence behavior.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill is explicitly centered on VTEX commerce operations and includes concrete APIs/functions for checkout and order management (e.g., vtexFetch POST to /api/checkout/pub/orderForm/*, consolidated cart/checkout actions like addItems/updateItems, OrderForm manipulation, and references to paymentData). Those are specific, non-generic endpoints whose purpose is creating/updating orders and driving checkout flows (i.e., executing commerce transactions). This meets the "specific tool to move money / send transaction" criterion.