sf-setup

Pass

Audited by Gen Agent Trust Hub on Jun 29, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADS
Full Analysis
  • [EXTERNAL_DOWNLOADS]: Recommends installing official Salesforce development tools such as sfcc-ci and @salesforce/cli from public registries.
  • [EXTERNAL_DOWNLOADS]: Instructs the agent to fetch documentation from official SalesforceCommerceCloud GitHub repositories to ensure up-to-date configuration steps.
  • [SAFE]: Explicitly warns against hardcoding credentials in project files like dw.json and correctly identifies the use of environment variables as a secure alternative.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 29, 2026, 02:50 PM
Security Audit — agent-trust-hub — sf-setup