ClawHub

Shopify Audit

v1.0.0

Audit Shopify store pages for conversion blockers including slow load, weak copy, missing trust signals, and friction in the add-to-cart flow.

1· 59·0 current·0 all-time
byLeroyCreates@leooooooow
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name/description (Shopify storefront conversion audit) match the SKILL.md behavior: it asks for public store and product URLs and provides page-by-page copy/UX/trust/performance guidance. No credentials, binaries, or unrelated resources are requested.
Instruction Scope
Instructions stay within the domain of inspecting public pages, copy, layout and checkout UX. The skill explicitly states it does NOT run automated Lighthouse/Core Web Vitals tests and will base load-time assessments on the provided URLs/descriptions — this is a limitation that can lead to approximate or inaccurate performance advice and should be verified with real measurements.
Install Mechanism
No install spec or code files are present; this is an instruction-only skill so nothing will be written to disk or downloaded during install.
Credentials
The skill requires only public URLs and optional baseline conversion metrics supplied by the user. It asks for no environment variables, API keys, admin credentials, or config paths — access requests are proportionate to the stated purpose.
Persistence & Privilege
always is false and the skill does not request persistent system presence or modify other skills. Autonomous model invocation is allowed by default but is not a concerning combination here since no sensitive credentials are requested.
Assessment
This skill is internally consistent with its stated purpose: it needs only public store and product URLs and optional conversion numbers. Before using it, do not provide Shopify admin credentials, analytics dashboard access, or any secret tokens — they are not needed. Be aware the skill does not run automated performance tests; treat its speed/load suggestions as heuristic and validate high-impact recommendations with Lighthouse, WebPageTest, or real analytics. Also: the skill's source and owner are unknown and there is no homepage—if you plan to rely on its guidance for major changes, prefer to test fixes in a staging environment and cross-check recommendations against other audits or tooling. If you do not want the agent to call skills autonomously, consider disabling autonomous invocation in your agent settings.

Like a lobster shell, security has layers — review code before you run it.

latestvk97fy23p88jnn73xjjdwyvv265841ksc

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments