b2c-controllers
Pass
Audited by Gen Agent Trust Hub on Apr 15, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill is purely instructional, providing templates and patterns for Salesforce B2C Commerce (SFRA and Classic) development. All code examples use standard platform APIs (e.g., 'dw/catalog/ProductMgr', 'dw/system/Transaction') as expected for this domain.
- [SAFE]: No malicious patterns such as prompt injection, hardcoded credentials, or persistence mechanisms were detected in the instructions or reference files.
- [SAFE]: The skill explicitly includes security-focused patterns, such as implementing CSRF protection middleware ('csrfProtection.validateAjaxRequest'), requiring HTTPS ('server.middleware.https'), and validating user authentication ('userLoggedIn.validateLoggedIn').
- [SAFE]: No remote code execution or unauthorized network operations were found. The examples demonstrate standard server-side logic for a commerce storefront application.
Audit Metadata