fetching-salesforce-docs
Pass
Audited by Gen Agent Trust Hub on May 14, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The
runtime_bootstrap.pyscript usesos.execveto re-execute extraction scripts within a dedicated virtual environment located at~/.claude/.fetching-salesforce-docs-runtime. This is a standard and safe implementation for ensuring scripts run with their required dependencies in an isolated environment. - [EXTERNAL_DOWNLOADS]: The skill requires the installation of the Playwright browser and specific Python packages (
playwright,playwright-stealth) to facilitate the extraction of client-rendered documentation. These are well-known libraries and are used for their intended purpose of browser automation. - [DATA_EXFILTRATION]: Network activity is restricted to fetching content from official, vendor-owned Salesforce domains (e.g.,
developer.salesforce.com,help.salesforce.com). The extraction scripts include validation logic to ensure they only process URLs from these supported official hosts.
Audit Metadata