The Agent Skills Directory

[COMMAND_EXECUTION]: The skill utilizes command-line tools such as Grep and a custom shell script (scripts/security-scan.sh) to perform static analysis on local Salesforce source code. The script identifies patterns associated with security risks, such as DML operations without permission checks or SOQL queries without user mode. These operations are limited to local directory scanning and Salesforce CLI (sf) commands as defined in the tool permissions.
[SAFE]: No evidence of malicious intent, prompt injection, or unauthorized data exfiltration was found. The skill operates locally on provided codebase files to generate security reports and provide educational references for secure coding practices.

sf-security