Skills
skills/jaredjester/shopify-theme-builder-skill/shopify_theme_builder/Gen Agent Trust Hub

shopify_theme_builder

Pass

Audited by Gen Agent Trust Hub on Mar 7, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill installs the official Shopify CLI globally via NPM and clones a starter theme from the author's GitHub repository.
  • Installs @shopify/cli from NPM, which is a well-known service.
  • Clones https://github.com/jaredjester/hydroshell-swimbuds.git, which is a recognized vendor resource.
  • [COMMAND_EXECUTION]: Uses the system shell to execute shopify, npm, and git commands for theme management, authentication, and version control.
  • [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection due to its data ingestion and processing workflow.
  • Ingestion points: Collects structured interview data (brand story, SEO keywords, policy text) in Phase 2 and accepts user-supplied base theme paths or exports in Phase 3.
  • Boundary markers: Does not utilize delimiters or specific instructions to the agent to ignore potentially malicious instructions embedded within the user-supplied data or theme files.
  • Capability inventory: The skill has permissions to execute arbitrary CLI commands (shopify, npm, git), perform filesystem operations in the workspace, and push data to remote Shopify stores and GitHub repositories.
  • Sanitization: No validation or sanitization logic is present for user-provided URLs, file paths, or text fields before they are integrated into the theme or used in command arguments.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 7, 2026, 12:34 AM