saleor-development
Pass
Audited by Gen Agent Trust Hub on Mar 16, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill utilizes official Saleor resources, including the @saleor/cli and @saleor/app-sdk packages, as well as the official saleor-platform GitHub repository.
- [SAFE]: Implementation examples for Saleor Apps correctly demonstrate webhook signature verification using the official SDK, which is critical for preventing unauthorized data processing and ensuring the integrity of incoming requests.
- [SAFE]: Sensitive credentials such as API tokens and endpoint URLs are handled through environment variables, following standard security best practices for avoiding hardcoded secrets.
- [SAFE]: Analysis of Base64 strings used in GraphQL examples (e.g., 'T3JkZXI6MTIz') confirmed they are standard Saleor object identifiers ('Order:123') and do not contain hidden malicious instructions or data.
Audit Metadata