running-apex-tests
Pass
Audited by Gen Agent Trust Hub on May 14, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill integrates with the official Salesforce CLI (sf) for running tests and fetching coverage, which is the standard and secure way to interact with Salesforce orgs.
- [SAFE]: The included Python script hooks/scripts/parse-test-results.py is used as a post-tool hook to parse test results. It uses standard libraries and performs no network operations or unsafe file access.
- [SAFE]: Apex code templates (e.g., assets/basic-test.cls, assets/dml-mock.cls) use industry-standard patterns for unit testing and mocking, ensuring data isolation and preventing accidental modification of production data during testing.
- [SAFE]: The Agentic Test-Fix Loop is a documented automation feature that uses the agent's reasoning to interpret failures and suggest fixes, with instructions that include human-like validation steps (reading the source files) before applying changes.
- [SAFE]: No indicators of prompt injection, data exfiltration, obfuscation, or unauthorized privilege escalation were detected.
Audit Metadata