Skills
.Work. You
Rest

sf-security

Community

Enforce Salesforce Apex security and prevent leaks

Software Engineering#security#sharing#crud#salesforce#apex#fls#soql-injection
Authorjiten-singh-shahi
Version1.0.0
Installs0

System Documentation

What problem does it solve?

This Skill helps developers and security reviewers identify and remediate common Salesforce security issues in Apex, SOQL, and UI components so applications respect CRUD, FLS, sharing, and injection protections required for safe production and AppExchange submissions.

Core Features & Use Cases

  • CRUD and FLS enforcement: Guidance on using WITH USER_MODE, AccessLevel.USER_MODE, and Security.stripInaccessible to ensure record and field-level access is enforced.
  • Sharing context and keywords: Decision guidance for with sharing, without sharing, and inherited sharing based on caller context and scheduled processing.
  • SOQL injection prevention and safe dynamic queries: Patterns for bind variables, queryWithBinds, and whitelist-based dynamic sorting to avoid injection.
  • AppExchange and review preparation: Checklist of common review failures and actionable fixes for debug logs, hardcoded credentials, and insecure DML.

Quick Start

Run a security review on the provided Apex classes and report missing CRUD/FLS checks, inappropriate sharing keywords, and SOQL injection risks.

Dependency Matrix

Required Modules

None required

Components

Standard package

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: sf-security
Download link: https://github.com/jiten-singh-shahi/salesforce-claude-code/archive/main.zip#sf-security

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository

Agent Skills Search Helper

Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.