Skills
skills/forcedotcom/afv-library/syncing-test-providers/Gen Agent Trust Hub

syncing-test-providers

Pass

Audited by Gen Agent Trust Hub on Jun 23, 2026

Risk Level: SAFE
Full Analysis
  • [COMMAND_EXECUTION]: The skill utilizes the sf CLI (Salesforce CLI) to perform API requests. This is standard and expected behavior for a Salesforce-oriented DevOps skill.
  • [SAFE]: All network operations are directed towards official Salesforce API endpoints (/services/data/v67.0/connect/). The skill correctly uses the --target-org parameter to reference existing authenticated sessions rather than handling credentials directly.
  • [SAFE]: The skill implements a 'Confirmation gate' (Step 2), ensuring that no state-changing POST requests are executed without explicit user approval.
  • [SAFE]: Security best practices are followed regarding error handling; the instructions explicitly forbid exposing raw API error messages or JSON payloads to the user, providing a mapping to plain-language messages instead.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 23, 2026, 08:28 PM
Security Audit — agent-trust-hub — syncing-test-providers