Skills
skills/forcedotcom/afv-library/implementing-ui-bundle-file-upload/Gen Agent Trust Hub

implementing-ui-bundle-file-upload

Pass

Audited by Gen Agent Trust Hub on May 15, 2026

Risk Level: SAFE
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill instructs the installation of the @salesforce/ui-bundle-template-feature-react-file-upload package and its dependencies (@salesforce/ui-bundle, @salesforce/sdk-data). These are official packages under the Salesforce NPM scope, aligning with the skill author's organization ('forcedotcom').
  • [COMMAND_EXECUTION]: Contains standard package management commands (npm install) for the required Salesforce development libraries.
  • [SAFE]: The skill serves as documentation for a legitimate developer utility. It correctly advises developers to use provided APIs instead of building custom transport logic, which reduces the risk of common vulnerabilities like insecure direct object references or lack of proper authorization checks during file upload.
Audit Metadata
Risk Level
SAFE
Analyzed
May 15, 2026, 12:59 AM
Security Audit — agent-trust-hub — implementing-ui-bundle-file-upload