sf-apex
Pass
Audited by Gen Agent Trust Hub on Apr 28, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides a robust framework for generating and reviewing Salesforce Apex code, focusing on core security principles such as CRUD/FLS enforcement, bulkification, and SOQL injection prevention.
- [SAFE]: Automated validation is conducted through local Python scripts that interface with the Salesforce Apex Language Server (LSP) and the Salesforce Code Analyzer. These processes are confined to the local development environment and serve to provide immediate feedback on code quality and syntax.
- [SAFE]: The skill includes explicit generation guardrails and checklists designed to identify and remediate common Apex anti-patterns. These security controls are part of the primary purpose of the skill to ensure the safety of the generated code.
- [SAFE]: External references and authors cited in the documentation are well-established and trusted members of the Salesforce developer community, and no suspicious external dependencies or remote execution patterns were found.
Audit Metadata