sf-b2c-scapi
Pass
Audited by Gen Agent Trust Hub on Mar 31, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides structured guidance and architectural patterns for using Salesforce Commerce APIs in headless commerce environments.
- [SAFE]: It emphasizes secure authentication practices, including the use of SLAS (Shopper Login and API Access Service) and PKCE (Proof Key for Code Exchange).
- [SAFE]: The instructions explicitly recommend storing sensitive client credentials in environment variables rather than hardcoding them in the application source code.
- [SAFE]: External references for documentation and SDKs target official developer.salesforce.com domains and the SalesforceCommerceCloud GitHub organization, which are trusted and well-known service providers.
Audit Metadata