shopify-api-graphql

Pass

Audited by Gen Agent Trust Hub on Mar 31, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADS
Full Analysis
  • [SAFE]: The skill serves as a reference for integrating with Shopify's GraphQL APIs and does not contain malicious code or instructions.
  • [EXTERNAL_DOWNLOADS]: The skill suggests installing the official ShopifyAPI Python library and fetching documentation from shopify.dev. These are well-known, official resources provided by Shopify.
  • [PROMPT_INJECTION]: The instructions involve fetching live documentation from external URLs (shopify.dev). While this allows external data into the agent's context (indirect prompt injection surface), the sources are restricted to trusted official Shopify domains.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 31, 2026, 06:10 AM
Security Audit — agent-trust-hub — shopify-api-graphql