apex-class
Fail
Audited by Gen Agent Trust Hub on Feb 21, 2026
Risk Level: CRITICAL
Full Analysis
- [EXTERNAL_DOWNLOADS] (SAFE): The automated scanner alert for 'AccountService.de' is a false positive. The scanner misinterpreted the documentation string in 'AccountService.cls' where the class name 'AccountService' is followed by a description starting with 'Delegates'. No actual network calls or external references to this domain exist in the code.
- [COMMAND_EXECUTION] (SAFE): The skill uses dynamic SOQL ('Database.query') which is a standard Salesforce pattern. The templates and examples implement robust protection against SOQL injection by using bind variables (e.g., ':recordIds') and validating dynamic field names against the SObject field map before execution.
- [CREDENTIALS_UNSAFE] (SAFE): No hardcoded API keys, secrets, or credentials were found. The templates use 'callout' placeholders which refer to standard Salesforce Named Credentials.
- [DATA_EXFILTRATION] (SAFE): No unauthorized data transmission patterns were detected. All data operations are restricted to standard Salesforce DML and SOQL within the platform's security context.
- [PROMPT_INJECTION] (SAFE): No instruction overrides or bypass attempts were found in the documentation or comments.
Recommendations
- Contains 1 malicious URL(s) - DO NOT USE
Audit Metadata