shopify-custom-data
Warn
Audited by Gen Agent Trust Hub on Apr 9, 2026
Risk Level: MEDIUMPROMPT_INJECTIONCOMMAND_EXECUTIONREMOTE_CODE_EXECUTIONEXTERNAL_DOWNLOADSDATA_EXFILTRATIONNO_CODE
Full Analysis
- [PROMPT_INJECTION]: The skill uses authoritative language to override other documentation, stating that its instructions 'should be followed VERY CLOSELY and TAKE PRECEDENCE!' over other guidelines.
- [COMMAND_EXECUTION]: The skill forces the agent to use the bash tool for every response to run specific local Node.js scripts (search_docs.mjs and validate.mjs).
- [REMOTE_CODE_EXECUTION]: The mandatory scripts (search_docs.mjs and validate.mjs) are referenced in the instructions but not included in the skill files, creating a dependency on unverified code execution.
- [DATA_EXFILTRATION]: The instructions command the agent to pass metadata about its own environment, including the model name, client application, and version, as command-line arguments to the validation script.
- [EXTERNAL_DOWNLOADS]: The documentation directs users to install the @shopify/cli package globally from public registries.
- [NO_CODE]: The skill requires the execution of multiple scripts in a scripts/ directory that are absent from the provided skill package.
Audit Metadata