dx-devops-test-suite-run

Pass

Audited by Gen Agent Trust Hub on Jun 29, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [COMMAND_EXECUTION]: The skill uses the Salesforce CLI (sf) to execute commands such as sf data query, sf api request rest, and sf org list. These commands are used to interact with the user's Salesforce environment to retrieve configuration and trigger test executions.
  • [EXTERNAL_DOWNLOADS]: In the prerequisite section, the skill checks for the presence of the @salesforce/plugin-agent and provides instructions to install it via sf plugins install if missing. This is an official Salesforce-authored plugin required for the skill's operation.
  • [DATA_EXFILTRATION]: The skill queries sensitive development data, including pipeline structures, stage IDs, and test results from the Salesforce org. However, this data is accessed using the user's authenticated session and is used solely for the skill's stated purpose of reporting test status and facilitating failure analysis within the agent's context.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 29, 2026, 05:44 PM
Security Audit — agent-trust-hub — dx-devops-test-suite-run