Shopify A/B Testing
Security checks across malware telemetry and agentic risk
Overview
This is a short advisory Shopify A/B testing skill with no hidden code or data access, though users should verify the npx install command before running it.
Use this as an advisory assistant for Shopify A/B testing. Before running the npx install command, confirm that `skills` and `nexscope/shopify-ab-testing` are the source you intend to trust. Do not provide Shopify API keys or admin access unless you separately verify code or service behavior that actually needs those permissions.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
61/61 vendors flagged this skill as clean.