Back to plugin

Security audit

Shopify Commerce

Security checks across malware telemetry and agentic risk

Overview

The visible artifacts are a coherent Shopify development guidance pack with no evidence of hidden execution or data exfiltration, though its examples involve high-impact Shopify APIs and credentials that users should approve carefully.

This skill appears safe to install as a Shopify development assistant. Before using it with a real store, keep credentials out of chat, grant the smallest Shopify scopes needed, review generated GraphQL mutations and CLI commands, and avoid live deployments or destructive operations without explicit confirmation.

VirusTotal

No VirusTotal findings

View on VirusTotal

Static analysis

No suspicious patterns detected.