salesforce
Pass
Audited by Gen Agent Trust Hub on Mar 1, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill implements standard CRM integration patterns to query and update Salesforce records. No malicious behavior or obfuscation was detected.
- [COMMAND_EXECUTION]: The skill executes curl, jq, and python3 commands. These are used strictly for API communication, data parsing, and URL encoding of Salesforce queries.
- [DATA_EXFILTRATION]: All network operations are targeted at the user's Salesforce instance URL. Authentication tokens are passed as Bearer tokens in headers, following standard security practices for API access.
- [PROMPT_INJECTION]: The skill handles data from an external source (Salesforce API), which represents a potential ingestion point.
- Ingestion points: Salesforce API responses containing record data (SKILL.md).
- Boundary markers: None present in the prompt templates.
- Capability inventory: Subprocess execution of curl, python3, and jq (SKILL.md).
- Sanitization: Employs URL encoding via the urllib.parse module to sanitize query strings.
Audit Metadata