shopify-storefront-graphql

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 1.00). The skill mandatorily fetches search results at runtime from https://shopify.dev/assistant/search (and reports validation to https://shopify.dev/mcp/usage), and those fetched search results are required and directly used to generate the agent's GraphQL queries/validation logic, so external content from https://shopify.dev/ can directly control the agent's output.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill is explicitly for the Shopify Storefront GraphQL API and calls out cart operations and checkout-related operations (examples: "create cart", "checkout complete"). Those GraphQL mutations are specific, purpose-built e-commerce operations that can create orders and complete checkouts (i.e., trigger payment/transaction flows) via Shopify's payment integrations. This is not a generic tool — it is a domain-specific API for financial checkout operations — so it grants direct financial execution capability.