shopify-expert

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's reference code clearly fetches and executes content from external/untrusted sources — e.g., extensions/post-purchase/src/PostPurchase.tsx fetches an upsell offer from an external URL and then applies that offer to the order, and snippets/third-party-scripts.liquid shows loading arbitrary third-party scripts (settings.chat_script_url, settings.reviews_script_url) which the app will execute — allowing remotely-supplied content to influence runtime actions.