Skills
skills/orcaqubits/agentic-commerce-skills-plugins/saleor-customers/Gen Agent Trust Hub

saleor-customers

Pass

Audited by Gen Agent Trust Hub on Mar 31, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill acts as a technical reference for interacting with the Saleor API. No malicious patterns, obfuscation, or unauthorized data access attempts were detected.
  • [EXTERNAL_DOWNLOADS]: The skill instructs the agent to fetch documentation from docs.saleor.io. This is a well-known service, and the downloads are intended for retrieving legitimate technical specifications and guidelines.
  • [COMMAND_EXECUTION]: While the skill includes Bash in its allowed-tools, the instructions do not contain any predefined malicious commands or shell scripts. The tool is likely intended for the agent to use in a local development environment to interact with the API or manage files.
  • [PROMPT_INJECTION]: The skill incorporates external data ingestion via web searches and fetches to docs.saleor.io. Although this creates a surface for indirect prompt injection, the risk is minimized by targeting a reputable documentation source, and the instructions are consistent with the skill's primary purpose.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 31, 2026, 06:10 AM