Shopify API Library for Node - accelerate development with support for authentication, graphql proxy, webhooks
94%
Total Score
99
86
89
100
100
| Title | Versions | Severity |
|---|---|---|
AIKIDO-2026-591645 Pre-CVE Found by Aikido Intel before public disclosure or CVE publication. @shopify/shopify-api is vulnerable to Improper Verification of Cryptographic Signature in versions 6.0.0 - 13.0.0. | 6.0.0 - 13.0.0 | Medium |
| Dependency | Last Release | Score |
|---|---|---|
jose Version ^5.9.6 | — | — |
isbot Version ^5.1.40 | — | — |
tslib Version ^2.8.1 | — | — |
lossless-json Version ^4.3.0 | — | — |
compare-versions Version ^6.1.1 | — | — |
Connect your repositories to instantly see whether vulnerable or malicious packages exist in your codebase.
Free. No credit card required.

SOC 2Compliant
ISO 27001Compliant