agentforce-generate

Pass

Audited by Gen Agent Trust Hub on Jun 26, 2026

Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
  • [PROMPT_INJECTION]: The skill contains instructions for agents to disregard user attempts to override system rules and to protect internal metadata, such as system prompts and function definitions, from being revealed to the user. It also includes specific guidance to suppress the use of the show_command platform tool in favor of direct text responses. These instructions are documented as defensive guardrails and stability measures to prevent prompt extraction and session state corruption.
  • [COMMAND_EXECUTION]: The skill guides the user through the use of the Salesforce CLI (sf) for managing the lifecycle of Agentforce agents, including metadata deployment, validation, and automated testing. These commands are executed locally within the user's development environment to interact with their authenticated Salesforce organizations.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 26, 2026, 01:15 PM
Security Audit — agent-trust-hub — agentforce-generate