shopify-sdk-patterns
Pass
Audited by Gen Agent Trust Hub on Mar 26, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides code templates for the official Shopify SDK and does not contain any malicious patterns.
- [DATA_EXPOSURE]: No hardcoded secrets were found. The skill correctly instructs developers to use environment variables for sensitive API keys and tokens.
- [EXTERNAL_DOWNLOADS]: References well-known and trusted libraries (@shopify/shopify-api and zod). No suspicious external downloads or remote script executions were detected.
- [INDIRECT_PROMPT_INJECTION]: The skill includes patterns for validating external API responses using Zod, which is a recommended practice to prevent issues with malformed or malicious data from external sources.
Audit Metadata