shopify-use-shopify-cli

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). This skill's required "Store execution contract" workflow directs the agent to run shopify store auth and shopify store execute against arbitrary store domains (e.g., --store .myshopify.com) and to read and act on the resulting GraphQL responses, which are untrusted third-party content that can influence subsequent tool use and decisions.