Latest release: v1.0.0Download zip
Capabilities
Compatibility
Security Scan
OpenClaw
Benign
medium confidencePurpose & Capability
The skill is coherent with its stated purpose: it provides Saleor, GraphQL, Django, Next.js, app, webhook, and commerce-development guidance. It can guide work that affects products, orders, customers, payments, and deployments, so generated changes should be reviewed before use on live stores.
Instruction Scope
The instructions repeatedly require web-searching or fetching current official documentation before writing code. This is purpose-aligned for a rapidly changing API, but users should expect browsing/tool use.
Install Mechanism
No install spec is declared, and the OpenClaw manifest references skill directories only. The provided code files appear to be local safety helper hooks, with no visible evidence of automatic package installation, background service setup, or remote script execution.
Credentials
The guidance discusses npm, Next.js, Django, Docker, Saleor CLI, migrations, deployments, GraphQL tokens, and app permissions, which are proportionate to Saleor development but can affect production environments if applied carelessly.
Persistence & Privilege
The plugin itself declares no required credentials or config, but the Saleor app guidance explains storing app tokens in an Auth Persistence Layer and requesting high-impact permissions; this is expected for Saleor Apps and should be scoped carefully.
Assessment
This appears safe to install as a Saleor development aid. Before using it on a real store, verify generated code and manifests, keep Saleor tokens and payment credentials server-side, limit app permissions, and review any database migration, deployment, or destructive command before running it.