shopify-admin-product-lifecycle-manager
Pass
Audited by Gen Agent Trust Hub on Apr 12, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No security issues detected. The skill performs standard administrative tasks on a Shopify store using authenticated CLI tools and structured GraphQL queries.
- [PROMPT_INJECTION]: User-supplied parameters such as 'filter' and 'target_status' are used as GraphQL variables, which is a secure practice that prevents injection attacks.
- [DATA_EXFILTRATION]: The skill's output is limited to a local CSV file for auditing change history. No unauthorized network operations or data exfiltration attempts were found.
- [COMMAND_EXECUTION]: All operations are scoped to the 'shopify-admin' and 'shopify-admin-execution' toolkits. There are no attempts to execute arbitrary shell commands or access sensitive system files.
Audit Metadata