shopify-api

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill instructs the agent to fetch and process live content from arbitrary Shopify stores (e.g., POST https://{store}.myshopify.com/admin/api/2025-10/graphql.json, the Storefront API endpoint, and theme Ajax endpoints like /cart.js), which are third‑party/user-generated sources (product descriptions, images, orders, customer data, webhook payloads) that could carry indirect prompt injection.