The Agent Skills Directory

PROMPT_INJECTION (LOW): The skill's intended use cases (Shopify app architecture, OAuth flows, and Cloudflare Workers deployment) create an attack surface for indirect prompt injection. Malicious instructions could be delivered via untrusted external data sources such as API responses or integration configurations. Evidence: 1. Ingestion points: Shopify admin API and third-party service data described in metadata.json. 2. Boundary markers: Absent. 3. Capability inventory: Shopify CLI execution and deployment operations. 4. Sanitization: No sanitization or validation protocols are specified in the metadata.
EXTERNAL_DOWNLOADS (LOW): An automated scanner flagged the domain 'your-app-domain.com' as malicious. While this domain is a common placeholder in Shopify documentation and templates and is not present in the provided metadata.json file, its presence in the skill's wider context is noted as a potential risk.
NO_CODE (SAFE): The provided file consists entirely of metadata and does not contain executable code or runtime instructions. An anomaly was detected in the 'updatedAt' field, which contains a future date (November 2025), likely a metadata configuration error.

shopify-app-dev