sf-industry-commoncore-integration-procedure
Pass
Audited by Gen Agent Trust Hub on Mar 17, 2026
Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
- [PROMPT_INJECTION]: Indirect Prompt Injection Surface. The skill translates natural language business requirements into structured Salesforce Integration Procedure definitions and deployment commands.
- Ingestion points: User-provided business process requirements and logic descriptions defined in the workflow requirements gathering (SKILL.md).
- Boundary markers: Utilizes a structured 5-phase execution pattern and explicit 'Generation Guardrails' to guide and constrain output (SKILL.md).
- Capability inventory: Provides pre-formatted CLI commands for the
sftool to query, create, and deploy metadata to Salesforce environments, including the use of REST API requests (SKILL.md). - Sanitization: Enforces a mandatory 110-point scoring rubric that evaluates security (e.g., hardcoded credentials check), performance, and error handling for all generated procedures (SKILL.md).
- [COMMAND_EXECUTION]: The skill provides specific CLI commands for the Salesforce CLI tool (
sf) to manage org resources. These commands are necessary for the skill's primary function of Salesforce orchestration and metadata deployment.
Audit Metadata