b2c-code

Pass

Audited by Gen Agent Trust Hub on Jun 17, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [COMMAND_EXECUTION]: The skill facilitates the execution of the b2c CLI tool for cartridge management. These operations involve deploying code to remote instances, activating code versions, and deleting versions on the sandbox. This is standard functionality for the intended development workflow.
  • [EXTERNAL_DOWNLOADS]: The documentation suggests using npx @salesforce/b2c-cli if the tool is not installed locally. This command fetches the official Salesforce B2C Commerce CLI from the public npm registry. Since this is an official tool from a well-known vendor (Salesforce), it is considered a safe and standard dependency for this use case.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 17, 2026, 11:38 PM
Security Audit — agent-trust-hub — b2c-code