using-webapp-salesforce-data
Pass
Audited by Gen Agent Trust Hub on Mar 26, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill follows secure coding practices for Salesforce data access by mandating the use of a specialized Data SDK (
@salesforce/sdk-data) which handles authentication and CSRF protection. - [SAFE]: The provided shell script
graphql-search.shis a local utility for searching a schema file within the project directory. It does not perform network operations or access sensitive system files. - [SAFE]: The skill uses an allowlist for supported APIs and endpoints, specifically restricting usage to standard Salesforce UI and Apex REST services.
- [SAFE]: External references and dependencies (
@salesforce/sdk-data) belong to the vendor's own verified ecosystem.
Audit Metadata