generating-lightning-app
Pass
Audited by Gen Agent Trust Hub on May 14, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill is a coordination tool that manages complex metadata generation tasks without introducing malicious patterns or code.
- [EXTERNAL_DOWNLOADS]: The skill leverages the
salesforce-api-contexttool to fetch environment-specific metadata definitions and valid enum values. This interaction is restricted to the vendor's known infrastructure and is necessary for deployment accuracy. - [PROMPT_INJECTION]: The skill has an indirect prompt injection surface as it relies on natural language processing of user input to generate application structures.
- Ingestion points: User-provided natural language descriptions parsed during 'STEP 1: Requirements Analysis & Planning'.
- Boundary markers: No explicit delimiters or instructions are used to separate user data from the generation logic.
- Capability inventory: The skill coordinates the creation of various Salesforce XML metadata files and invokes multiple specialized generation sub-skills.
- Sanitization: Includes basic validation for naming conventions and reserved words to prevent trivial deployment errors.
Audit Metadata