platform-metadata-deploy
Pass
Audited by Gen Agent Trust Hub on Jun 26, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill uses the official Salesforce CLI (sf v2) for all deployment operations, following established best practices such as mandatory dry-run validation and sequential metadata deployment (Objects -> Permission Sets -> Apex -> Flows).
- [SAFE]: The provided templates (package.xml, destructiveChanges.xml) and scripts (deploy.sh) are standard development assets for the Salesforce ecosystem. No hardcoded credentials or suspicious command patterns were found.
- [SAFE]: All external references and domains (e.g., salesforce.com) are official vendor resources related to the 'forcedotcom' author, posing no risk of typosquatting or data exfiltration to untrusted entities.
- [SAFE]: No obfuscation, persistence mechanisms, or privilege escalation attempts were detected in the instructions or reference materials.
Audit Metadata