b2c-forms
Pass
Audited by Gen Agent Trust Hub on Feb 21, 2026
Risk Level: SAFE
Full Analysis
- SAFE (SAFE): No malicious patterns or security vulnerabilities detected in the provided skill content.
- DATA_EXPOSURE (SAFE): The skill demonstrates how to handle user data (emails, passwords) using standard Salesforce SFRA patterns, including server-side validation and database transactions. No credentials or exfiltration patterns were found.
- PROMPT_INJECTION (SAFE): No instructions attempting to override agent behavior or bypass safety filters were detected.
- COMMAND_EXECUTION (SAFE): The provided Javascript code uses standard B2C Commerce APIs ('server', 'dw/system/Transaction') and does not execute arbitrary shell commands.
- EXTERNAL_DOWNLOADS (SAFE): The skill does not reference any external URLs for code execution or package installation. The mentioned 'references/FORM-XML.md' is a local relative path.
Audit Metadata