shopify-admin-product-image-audit
Pass
Audited by Gen Agent Trust Hub on Apr 12, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill is strictly read-only and only performs product queries. It does not execute mutations or modifications to the Shopify store.
- [DATA_EXPOSURE]: The skill accesses product data (titles, IDs, image counts) which is necessary for its stated purpose. It does not access sensitive system files or credentials.
- [COMMAND_EXECUTION]: No arbitrary shell commands or subprocess calls are executed. It relies on the 'shopify-admin' and 'shopify-admin-execution' toolkits for API interactions.
- [EXTERNAL_DOWNLOADS]: No remote scripts, packages, or external resources are downloaded or executed.
- [PROMPT_INJECTION]: The instructions focus on data processing and output formatting. There are no attempts to override agent behavior, bypass safety filters, or extract system prompts.
- [OBFUSCATION]: The skill contains no encoded strings, hidden characters, or other techniques to conceal malicious intent.
Audit Metadata