salesforce-sdk-patterns
Provides production-ready Salesforce jsforce patterns for TypeScript and Python, enhancing integration and coding standards.
Install this skill
Security score
The salesforce-sdk-patterns skill was audited on May 26, 2026 and we found 11 security issues across 3 threat categories. Review the findings below before installing.
Categories Tested
Security Issues
Template literal with variable interpolation in command context
| 148 | conditions.push(`Industry = '${filters.industry.replace(/'/g, "\\'")}'`); |
Template literal with variable interpolation in command context
| 151 | conditions.push(`AnnualRevenue >= ${filters.minRevenue}`); |
Template literal with variable interpolation in command context
| 155 | soql += ` WHERE ${conditions.join(' AND ')}`; |
Template literal with variable interpolation in command context
| 169 | `SELECT Id, FirstName, LastName, Email, Phone, Title, Department |
Template literal with variable interpolation in command context
| 217 | 'INVALID_FIELD': `Invalid field name in query. Fields: ${fields.join(', ')}`, |
Template literal with variable interpolation in command context
| 261 | console.warn(`Retryable error ${errorCode}, attempt ${attempt}/${maxRetries}, waiting ${delay}ms`); |
Access to .env file
| 59 | loginUrl: process.env.SF_LOGIN_URL || 'https://login.salesforce.com', |
Access to .env file
| 64 | process.env.SF_USERNAME!, |
Access to .env file
| 65 | process.env.SF_PASSWORD! + process.env.SF_SECURITY_TOKEN! |
External URL reference
| 59 | loginUrl: process.env.SF_LOGIN_URL || 'https://login.salesforce.com', |
External URL reference
| 288 | - [jsforce API Reference](https://jsforce.github.io/document/) |