shopify-automation
Pass
Audited by Gen Agent Trust Hub on Mar 10, 2026
Risk Level: SAFEPROMPT_INJECTIONDATA_EXFILTRATION
Full Analysis
- [SAFE]: The skill consists of documentation and YAML templates for automation. It does not ship with any executable code or binary files.
- [PROMPT_INJECTION]: Indirect prompt injection surface identified. 1. Ingestion points: shopify_orders and shopify_customers tools in SKILL.md. 2. Boundary markers: Absent. 3. Capability inventory: Slack, Email, and Google Sheets notifications, plus Shopify API writes. 4. Sanitization: Absent. This surface is inherent to e-commerce automation and no malicious content or exploitation was detected.
- [DATA_EXFILTRATION]: The skill interacts with well-known services like Slack, Google Sheets, and shipping carriers to perform its core functions. These communications are part of the intended automation logic and do not involve unauthorized access to sensitive data or system files.
Audit Metadata