platform-trust-archive-manage
Pass
Audited by Gen Agent Trust Hub on Jun 26, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill is developed by 'forcedotcom' and operates within the official Salesforce Connect API framework (/platform/data-resilience/archive/). All documented operations are vendor-standard and intended for authorized data management tasks.
- [SAFE]: Security is maintained through mandatory organizational and user-level permissions, such as 'TrustedServicesArchive' and 'ViewSearchPage', which gate all archive operations. The skill explicitly identifies these requirements to prevent unauthorized access.
- [SAFE]: The skill exhibits an indirect prompt injection surface as it processes archived record data (untrusted input) through searching and viewing operations. However, this is inherent to the tool's administrative purpose. Evidence: 1. Ingestion points: search-archived-records (references/connect-api-operations.md). 2. Boundary markers: Absent. 3. Capability inventory: unarchive-records, forget-archived-records, mask-archived-records (references/connect-api-operations.md). 4. Sanitization: Absent. No active exploitation was observed.
Audit Metadata