fetch-shopify-schema

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.80). I flagged the external dependency "Shopify/shopify-ai-toolkit" (installed via the provided command npx plugins add Shopify/shopify-ai-toolkit --scope project --yes) because the skill requires using that remote plugin at runtime to inspect the live schema, which fetches and executes third-party plugin code that can directly influence agent behavior and prompts.