shopify-app-dev

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The theme app extension (extensions/product-reviews/blocks/reviews.liquid) fetches reviews from an app API (user-generated/third-party content) and directly injects review.title, review.content, and review.author into innerHTML, so the agent will read and display untrusted third-party content.