The Agent Skills Directory

[COMMAND_EXECUTION]: The skill executes local sf CLI commands and provided helper scripts (sf_deploy.sh, sf_export.sh, etc.) to interact with Salesforce APIs, perform metadata operations, and manage organizational configuration.
[EXTERNAL_DOWNLOADS]: References official Salesforce CLI and MCP packages from trusted organizations. It also documents well-known community-maintained MCP servers for Salesforce integration.
[SAFE]: Implements extensive safety guardrails, including automated org type detection (Production vs. Sandbox/Scratch), mandatory AskUserQuestion prompts for all write or destructive actions, and enforcement of query limits and test levels in production environments.
[DATA_EXFILTRATION]: No unauthorized data exfiltration patterns were detected. Data access is limited to authorized Salesforce orgs and local file operations (retrieve/export) as explicitly requested by the user.
[CREDENTIALS_UNSAFE]: No hardcoded credentials. The skill follows best practices by documenting standard Salesforce authentication flows (Web Login, JWT Bearer, SFDX Auth URL) and advising the use of environment variables and CI/CD secrets.

salesforce-cli