shopify-liquid-templates
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [Prompt Injection] (SAFE): No instructions found that attempt to override agent behavior, bypass safety protocols, or leak system prompts. The instructions are focused on coding standards.
- [Data Exposure & Exfiltration] (SAFE): No sensitive credentials, API keys, or private file paths are present. Network references are limited to official Shopify documentation domains.
- [Remote Code Execution] (SAFE): The skill does not contain any commands for downloading or executing external scripts, nor does it use package managers or dynamic execution functions.
- [Obfuscation] (SAFE): All content is in plain text. No Base64, hidden characters, or encoded commands were identified.
- [Indirect Prompt Injection] (SAFE): The skill identifies surfaces for data ingestion (e.g., product titles) but correctly recommends sanitization using Liquid filters like
| escape.
Audit Metadata