sf-omnistudio
Pass
Audited by Gen Agent Trust Hub on Mar 28, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides legitimate instructional content and tooling configurations for Salesforce development.
- [COMMAND_EXECUTION]: Employs the Salesforce CLI (sf) for org interactions. Commands are limited to the sf binary namespace and align with the skill's purpose of metadata management.
- [CREDENTIALS_UNSAFE]: No secrets or hardcoded credentials were found. The skill actively promotes secure practices by advising against hardcoding Salesforce IDs and using Named Credentials for integrations.
- [DATA_EXFILTRATION]: No unauthorized data transfer or exfiltration patterns were identified. Data operations are performed within the context of the user's authenticated Salesforce environment.
- [PROMPT_INJECTION]: The skill does not contain any instructions intended to bypass safety guardrails or override system prompts.
Audit Metadata