agentforce-architecture-analyze
Pass
Audited by Gen Agent Trust Hub on Jun 26, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill is authored by forcedotcom and facilitates legitimate Salesforce metadata analysis using established tools.
- [COMMAND_EXECUTION]: The skill executes
sfCLI subcommands usingsubprocess.runwithout a shell. Input validation is enforced at multiple layers usingfs_guard.py, which utilizes regular expressions to restrict identifiers to alphanumeric characters and underscores, effectively preventing command and SOQL injection. - [CREDENTIALS_UNSAFE]: The skill manages Salesforce access tokens securely. It includes specific logic in
rest_client.pyandwrite_emit_ctx.pyto redact tokens from error messages and logs. It also features a custom HTTP redirect handler that strips theAuthorizationheader when a request is redirected to a different hostname, preventing credential leakage. - [EXTERNAL_DOWNLOADS]: The skill communicates with official Salesforce API domains (
salesforce.com) to retrieve metadata related to the agent architecture. - [PROMPT_INJECTION]: Instructions within
SKILL.mdare focused on operational triggers and do not attempt to override agent safety protocols or extract system prompts.
Audit Metadata