Skills
skills/jaganpro/sf-skills/sf-datacloud-prepare/Gen Agent Trust Hub

sf-datacloud-prepare

Pass

Audited by Gen Agent Trust Hub on Apr 6, 2026

Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill executes a local diagnostic utility script using Node.js (diagnose-org.mjs) to verify org readiness before proceeding with preparation tasks.
  • [COMMAND_EXECUTION]: The skill utilizes the sf data360 CLI plugin to manage Data Cloud assets, including data streams, Data Lake Objects (DLOs), and transforms.
  • [PROMPT_INJECTION]: The skill presents an indirect prompt injection surface as it ingests and processes data from external CLI command outputs to guide subsequent agent actions.
  • Ingestion points: Data enters the agent context through the output of sf data360 commands, such as list and get operations.
  • Boundary markers: The instructions do not specify the use of delimiters or boundary markers to isolate ingested command output from the agent's primary instructions.
  • Capability inventory: The skill possesses capabilities for command execution (Node.js and Salesforce CLI) and file system references.
  • Sanitization: There is no evidence of explicit sanitization or strict schema validation for the data returned by the CLI tools before it is processed by the agent.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 6, 2026, 02:59 PM