skills/jeremylongshore/claude-code-plugins-plus-skills/salesforce-policy-guardrails/Gen Agent Trust Hub
salesforce-policy-guardrails
Pass
Audited by Gen Agent Trust Hub on Mar 25, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill is defensive in nature and implements security best practices for Salesforce integrations.
- [SAFE]: Step 1 provides a utility function
escapeSoqland clear documentation to prevent SOQL injection vulnerabilities by escaping special characters in user-supplied input. - [SAFE]: Step 2 and Step 5 provide ESLint and CI pipeline configurations to automate the detection of SOQL injection risks and hardcoded credentials.
- [SAFE]: Step 3 includes a bash script for pre-commit hooks that proactively identifies sensitive data (Org IDs, tokens, secrets) and prevents accidental commits of environment files.
- [SAFE]: Step 4 implements runtime guardrails to prevent Salesforce API limit exhaustion and daily usage overages.
Audit Metadata