ClawHub

Shopify App Recommendations

v1.0.0

App stack advisor — essential apps by business stage, cost optimization, performance impact analysis

0· 60·0 current·0 all-time
bynexscope-ai@nexscope
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name and description (Shopify app recommendations) match the instructions: strategic guidance, app comparisons, and implementation plans. The skill explicitly states it does not perform direct Shopify API integration, which aligns with the absence of credential or config requirements.
Instruction Scope
SKILL.md provides guidance-only instructions and example prompts. It does not instruct the agent to read local files, environment variables, or contact external endpoints beyond linking Nexscope for product info. The scope is limited to advisory outputs and user-provided context.
Install Mechanism
There is no formal install spec in the registry (instruction-only), but SKILL.md suggests an npx command that would fetch code (nexscope-ai/eCommerce-Skills). Running npx will execute remote code from npm/GitHub—review that package/source before running the command.
Credentials
The skill declares no required environment variables, credentials, or config paths. This is proportionate to a guidance-only advisor that does not integrate with Shopify APIs.
Persistence & Privilege
always is false and the skill requests no elevated or persistent system privileges. It's user-invocable and does not attempt to modify other skills or system-wide settings.
Assessment
This skill appears to be a guidance-only Shopify app advisor and does not request credentials or access to your store. The one thing to watch for: SKILL.md suggests installing a package via npx (nexscope-ai/eCommerce-Skills). Running npx will fetch and execute remote code—only run that if you trust the nexscope publisher; inspect the package repository first. Do not share store admin credentials or API keys with the skill; if you need concrete audits tied to your store, prefer explicit, vetted integrations that request only the minimum required permissions.

Like a lobster shell, security has layers — review code before you run it.

latestvk97ek00x6pg1kxw1ccvepmgkex84kkb3

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments