Back to skill

Security audit

Shopify Admin API

Security checks across malware telemetry and agentic risk

Overview

This is a legitimate Shopify Admin API reference, but it gives an agent broad live-store powers that can change, delete, refund, or expose sensitive store data without built-in safeguards.

Install only if you intend to let an agent help administer a Shopify store. Use a dedicated custom app token with the minimum necessary scopes, avoid read_all_orders unless truly needed, and require manual approval before deletes, refunds, cancellations, captures, fulfillment changes, inventory edits, customer-data edits, or webhook creation.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (1)

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The skill explicitly advertises full read/write access to the Shopify Admin API and documents numerous destructive actions such as deleting products/customers, canceling orders/fulfillments, modifying inventory, issuing refunds, and creating webhooks, but it does not provide strong warnings, approval requirements, or guardrails for risky operations. In an agent setting, this increases the chance of accidental or unauthorized business-impacting actions and broad data exposure because the documented capability spans sensitive customer, financial, and operational resources.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.