Skills
skills/forcedotcom/sf-skills/creating-fix-work-item/Gen Agent Trust Hub

creating-fix-work-item

Pass

Audited by Gen Agent Trust Hub on Jun 23, 2026

Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
  • [SAFE]: No evidence of malicious behavior, obfuscation, or unauthorized data exfiltration was found. The skill follows standard procedures for Salesforce development using the sf CLI.
  • [COMMAND_EXECUTION]: The skill uses the sf data create record command to create work items in the targeted Salesforce org. This is a legitimate and documented use of the tool within the skill's context.
  • [INDIRECT_PROMPT_INJECTION]: This category identifies the surface for potential manipulation through data ingested from external analysis.
  • Ingestion points: Data for the Subject, OwnerId, and DevopsProjectId fields enter the agent's context from previous tool outputs or user-provided parameters.
  • Boundary markers: No explicit boundary markers or delimiters are used to wrap the interpolated variables in the command template.
  • Capability inventory: The skill utilizes subprocess execution via the sf CLI to perform data creation.
  • Sanitization: While no explicit input sanitization is mentioned, the skill implements a mandatory confirmation gate requiring the user to explicitly approve the subject, assignee, and project before the command is executed, effectively mitigating the risk of unauthorized or malicious actions.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 23, 2026, 07:41 PM
Security Audit — agent-trust-hub — creating-fix-work-item