agentforce-d360-analyze
Pass
Audited by Gen Agent Trust Hub on Jun 26, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION]: The skill executes the Salesforce CLI (
sf) to retrieve authentication tokens and instance metadata. These executions are limited to specific, trusted subcommands (org display,org auth show-access-token) necessary for legitimate integration with Salesforce services. - [EXTERNAL_DOWNLOADS]: The skill makes network requests to the Salesforce Data Cloud Query API to retrieve session audit logs. These requests are authenticated using tokens obtained via the local CLI and target the user's specific Salesforce instance URL.
- [SAFE]: Robust input validation is implemented via
fs_guard.py, which uses strict regular expressions to validate session IDs, organization IDs, and API names before they are used in filesystem operations or SQL queries. This effectively prevents path traversal and injection vulnerabilities.
Audit Metadata