Malicious code in shopify_api_console (npm)

The package shopifyapiconsole was found to contain malicious code...

MAL-2025-33143 Malicious code in shopify_api_console (npm)

The package shopifyapiconsole was found to contain malicious code...

Shopify: H1514 Shopify API ruby SDK session setup lacks input validation, resulting in SSRF and leakage of client secret

Hi team, The Shopify API ruby SDK has the ability for the developer to interact with their shop's REST API. When setting up the gem, a code structure similar to the one below may be used to set up the connection: ruby require 'shopifyapi' class SomeController ' session =...