shopify
Pass
Audited by Gen Agent Trust Hub on Feb 20, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION] (LOW): The skill references a local setup script 'scripts/shopify_init.py' in SKILL.md. While the script content was not provided in the analyzed files, local execution of initialization scripts is a standard practice for project scaffolding.\n- [EXTERNAL_DOWNLOADS] (LOW): The documentation instructs users to install '@shopify/cli' via npm. This is a well-known package from an established registry, though not on the specific 'Trusted Sources' list, it is standard for Shopify development.\n- [PROMPT_INJECTION] (LOW): Vulnerability surface for Indirect Prompt Injection detected. Ingestion points: Store data including products, customers, and orders (SKILL.md). Boundary markers: Absent in code examples. Capability inventory: File system access via CLI, network operations via GraphQL API, and webhook handling. Sanitization: HMAC verification is included for webhooks, but no specific natural language sanitization is shown for data ingestion.
Audit Metadata