shopify-api

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). This skill instructs the agent to fetch and parse data from arbitrary Shopify stores (e.g., Storefront API POST https://{store}.myshopify.com/api/2025-10/graphql.json, REST Admin endpoints like /admin/api/.../products.json, and theme Ajax endpoints such as /cart.js), which are public/third‑party sources whose product descriptions/fields and webhook payloads can contain untrusted, user-generated content that the agent is expected to read and process.