sf-integrations

Pass

Audited by Gen Agent Trust Hub on Mar 31, 2026

Risk Level: SAFE
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill instructs the agent to fetch live documentation from developer.salesforce.com. These are official resources from a well-known service and are considered safe for technical reference.
  • [DATA_EXFILTRATION]: No exfiltration patterns detected. The skill actively encourages the use of Salesforce 'Named Credentials' to manage authentication declaratively, which is a security best practice to avoid hardcoding secrets.
  • [PROMPT_INJECTION]: No malicious instruction overrides or bypass attempts were found. The use of the word 'CRITICAL' is contextually appropriate for highlighting the importance of using current documentation.
  • [SAFE]: The skill provides standard integration patterns, emphasizing security measures like constant-time comparison for signature validation and idempotency for reliable event processing.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 31, 2026, 06:10 AM
Security Audit — agent-trust-hub — sf-integrations