shopify-api-graphql
Pass
Audited by Gen Agent Trust Hub on Mar 31, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADS
Full Analysis
- [SAFE]: The skill serves as a reference for integrating with Shopify's GraphQL APIs and does not contain malicious code or instructions.
- [EXTERNAL_DOWNLOADS]: The skill suggests installing the official
ShopifyAPIPython library and fetching documentation fromshopify.dev. These are well-known, official resources provided by Shopify. - [PROMPT_INJECTION]: The instructions involve fetching live documentation from external URLs (
shopify.dev). While this allows external data into the agent's context (indirect prompt injection surface), the sources are restricted to trusted official Shopify domains.
Audit Metadata