post-purchase-ui-extension

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.70). The skill explicitly instructs using WebFetch at runtime to fetch Shopify docs (e.g., https://shopify.dev/docs/api/checkout-extensions/post-purchase/components/), and that fetched content is intended to be injected into the agent's context to answer or guide coding decisions, so an external URL is used at runtime and directly controls agent prompts.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The SDK is explicitly for Shopify post-purchase upsells and exposes applyChangeset (described as "Apply the order edit and charge the buyer") and related payment/subscription options and error codes. These are specific APIs whose primary purpose is to modify orders and charge buyers (direct financial execution), not generic UI or HTTP tooling. Therefore it meets the criteria for Direct Financial Execution.