sfcc-cartridge-development
Pass
Audited by Gen Agent Trust Hub on Mar 16, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides standard development patterns for Salesforce Commerce Cloud and includes explicit security guidance regarding output encoding and transaction management.
- [DATA_EXFILTRATION]: The code examples demonstrate sending data to external endpoints for analytics and inventory synchronization. These are functional requirements for e-commerce integrations and use placeholder domains.
- [PROMPT_INJECTION]: The skill identifies the risk of XSS when using unencoded output in templates and provides instructions on how to handle trusted versus untrusted data correctly.
Audit Metadata