sf-permissions
Pass
Audited by Gen Agent Trust Hub on Mar 13, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: Authentication is handled securely by leveraging the local Salesforce CLI (sf org display), which avoids the use of hardcoded credentials or insecure token storage.
- [SAFE]: External dependencies are limited to reputable libraries (simple-salesforce, rich) with appropriate version constraints in requirements.txt.
- [SAFE]: Command execution is restricted to authorized Salesforce CLI operations necessary for retrieving session and organization information.
- [SAFE]: The skill’s functionality, including querying Salesforce metadata and exporting to local files (CSV/JSON), is consistent with its stated purpose as an auditing tool.
- [SAFE]: No evidence of malicious obfuscation, persistence mechanisms, or unauthorized data exfiltration was found during the analysis.
Audit Metadata