shopify-catalog
Pass
Audited by Gen Agent Trust Hub on Mar 31, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the agent to fetch technical documentation, API schemas, and mutation inputs from shopify.dev, which is the official developer platform for Shopify.\n- [PROMPT_INJECTION]: The skill identifies an indirect prompt injection surface as it is designed to ingest and process data from external sources, including Shopify Admin API responses and bulk operation results.\n
- Ingestion points: External data enters the agent context through Shopify Admin API GraphQL responses, bulk operation JSONL files, and official documentation fetched via WebFetch.\n
- Boundary markers: No explicit instructions or delimiters are provided to the agent to ignore potentially malicious instructions embedded within the retrieved Shopify data.\n
- Capability inventory: The skill is configured with access to tools like Bash, Write, and Edit, enabling it to perform file modifications or execute shell commands based on processed data.\n
- Sanitization: The skill does not define specific validation or sanitization routines for the data retrieved from external Shopify endpoints.
Audit Metadata