sf-datacloud-connect
Pass
Audited by Gen Agent Trust Hub on Mar 22, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION]: The skill relies on the sf CLI and a specific community plugin (data360) to manage Salesforce Data Cloud resources. It executes commands to list, test, and create connections.
- [COMMAND_EXECUTION]: It invokes a local Node.js script (~/.claude/skills/sf-datacloud/scripts/diagnose-org.mjs) to verify environment readiness before performing connection mutations.
- [EXTERNAL_DOWNLOADS]: The skill notes a dependency on an 'external community sf data360 CLI plugin' which must be installed in the environment for the skill to operate.
- [PROMPT_INJECTION]: The skill processes metadata (objects, fields, database schemas) ingested from external Salesforce orgs, creating a surface for indirect prompt injection. Ingestion points: Metadata retrieved from sf data360 connection objects and sf data360 connection fields (SKILL.md). Boundary markers: None identified in the instructions to delineate external data. Capability inventory: Execution of CLI commands and local scripts. Sanitization: No explicit sanitization or validation of the retrieved metadata is described.
Audit Metadata