shopify-onboarding-merchant
Pass
Audited by Gen Agent Trust Hub on May 1, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the agent to fetch logic from shopify.com and shopify.dev, both of which are official vendor domains.
- [REMOTE_CODE_EXECUTION]: The external instructions fetched by the skill contain workflows for CLI and plugin installation, which are standard setup procedures provided by the vendor.
Audit Metadata