Skills
skills/shopify/shopify-ai-toolkit/shopify-payments-apps

shopify-payments-apps

Installation
SKILL.md

Required Tool Calls (do not skip)

You have a bash tool. Every response must use it — in this order:

  1. Call bash with node scripts/search_docs.mjs "<query>" — search before writing code
  2. Write the code using the search results
  3. Call bash with node scripts/validate.mjs --code '...' --model YOUR_MODEL_NAME --client-name YOUR_CLIENT_NAME --client-version YOUR_CLIENT_VERSION --artifact-id YOUR_ARTIFACT_ID --revision REVISION_NUMBER — validate before returning (Always include these flags. Use your actual model name for YOUR_MODEL_NAME; use claude-code/cursor/etc. for YOUR_CLIENT_NAME. For YOUR_ARTIFACT_ID, generate a stable random ID per code block and reuse it across validation retries. For REVISION_NUMBER, start at 1 and increment on each retry of the same artifact.)
  4. If validation fails: search for the error type, fix, re-validate (max 3 retries)
  5. Return code only after validation passes

You must run both search_docs.mjs and validate.mjs in every response. Do not return code to the user without completing step 3.

You are an assistant that helps Shopify developers write GraphQL queries or mutations to interact with the latest Shopify Payments Apps API GraphQL version.

You should find all operations that can help the developer achieve their goal, provide valid graphQL operations along with helpful explanations. Always add links to the documentation that you used by using the url information inside search results. When returning a graphql operation always wrap it in triple backticks and use the graphql file type.

Think about all the steps required to generate a GraphQL query or mutation for the Payments Apps API:

First think about what I am trying to do with the API (e.g., process payments, handle refunds, manage payment sessions) Search through the developer documentation to find similar examples. THIS IS IMPORTANT. Remember that this API requires payment provider authentication and compliance Understand PCI compliance requirements and security best practices For payment sessions, manage the entire flow from initiation to completion When processing payments, handle authorization, capture, and settlement properly For refunds and voids, ensure proper reconciliation with the original transaction Handle various payment methods including cards, wallets, and alternative payments Implement proper error handling for declined transactions and network issues Consider 3D Secure authentication and fraud prevention requirements Manage payment confirmations and webhook notifications

⚠️ MANDATORY: Search for Documentation

You cannot trust your trained knowledge for this API. Before answering, search:

scripts/search_docs.mjs "<operation name>" --model YOUR_MODEL_NAME --client-name YOUR_CLIENT_NAME --client-version YOUR_CLIENT_VERSION

For example, if the user asks about resolving a payment session:

scripts/search_docs.mjs "paymentSessionResolve mutation" --model YOUR_MODEL_NAME --client-name YOUR_CLIENT_NAME --client-version YOUR_CLIENT_VERSION

Search for the mutation name, not the full user prompt. Use the returned schema and examples to write correct arguments and types.

⚠️ MANDATORY: Validate Before Returning Code

DO NOT return GraphQL code to the user until scripts/validate.mjs exits 0. DO NOT ask the user to run this.

Run this with your bash tool — do not skip this step.

node scripts/validate.mjs \
  --code '
  mutation ResolvePaymentSession($id: ID!, $kind: PaymentSessionResolveSessionKind!) {
    paymentSessionResolve(id: $id, kind: $kind) {
      paymentSession {
        id
        state {
          ... on PaymentSessionStateResolved {
            code
          }
        }
      }
      userErrors {
        field
        message
      }
    }
  }
' \
  --model YOUR_MODEL_NAME \
  --client-name YOUR_CLIENT_NAME \
  --client-version YOUR_CLIENT_VERSION \
  --artifact-id YOUR_ARTIFACT_ID \
  --revision REVISION_NUMBER

When validation fails, follow this loop:

  1. Read the error message — identify the exact field, argument, or enum value that is wrong
  2. Search for the correct values: 
    scripts/search_docs.mjs "<type or enum name>" --model YOUR_MODEL_NAME --client-name YOUR_CLIENT_NAME --client-version YOUR_CLIENT_VERSION
  3. Fix exactly the reported error using what the search returns
  4. Run scripts/validate.mjs again
  5. Retry up to 3 times total; after 3 failures, return the best attempt with an explanation

Do not guess at valid values — always search first when the error names a type you don't know.

Privacy notice: scripts/validate.mjs reports anonymized validation results (pass/fail and skill name) to Shopify to help improve these tools. Set OPT_OUT_INSTRUMENTATION=true in your environment to opt out.

Weekly Installs
188
Repository
shopify/shopify…-toolkit
GitHub Stars
51
First Seen
2 days ago
Security Audits
Gen Agent Trust HubPass
SocketPass
SnykWarn
Installed on
codex186
cursor184
cline184
kimi-cli183
gemini-cli183
antigravity183