shopify
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS] (SAFE): The skill guides the user to install the official Shopify CLI tool (@shopify/cli) via npm. As this is the legitimate and necessary tool for the platform, it is categorized as safe.
- [COMMAND_EXECUTION] (SAFE): The skill uses various Shopify CLI commands to manage the application lifecycle. These commands are standard for development and do not include any malicious or high-privilege operations.
- [CREDENTIALS_UNSAFE] (SAFE): All code examples and configuration samples use environment variables (e.g., process.env.SHOPIFY_API_KEY) or standard placeholders instead of hardcoded secrets.
- [DATA_EXFILTRATION] (SAFE): Network requests are directed to official Shopify domains for legitimate API interactions, with no evidence of sensitive data being sent to unauthorized external servers.
Audit Metadata