← Back to Skills Marketplace
Salesforce AI Agent Script
by
Anush DSouza
· GitHub ↗
· v1.0.0
· MIT-0
88
Downloads
0
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install sf-ai-agentscript
Description
Agent Script DSL for deterministic Agentforce agents. TRIGGER when: user writes or edits .agent files, builds FSM-based agents, uses Agent Script CLI (sf age...
Usage Guidance
This skill appears to be what it says: documentation, patterns, and local validators for Salesforce Agent Script authoring. Before installing or running it: 1) Manually inspect the two Python scripts (hooks/scripts/agentscript-syntax-validator.py and scripts/validate-asset-profiles.py) and any other executable files for unexpected network calls or code that runs arbitrary shell commands. 2) Confirm how your platform treats allow_implicit_invocation and triggers so the skill doesn't run automatically in contexts you don't expect. 3) Use normal Salesforce auth flows for CLI commands; do not paste long-lived secrets into skill configuration. 4) Because a prompt-injection pattern was flagged in SKILL.md, quickly scan the skill documentation for any content that attempts to instruct the agent to ignore previous safety instructions or to exfiltrate files/credentials; remove or sandbox any such lines. If you want, I can extract and show the contents of the two Python scripts and the relevant SKILL.md sections flagged for manual review.
Capability Analysis
Type: OpenClaw Skill
Name: sf-ai-agentscript
Version: 1.0.0
The sf-ai-agentscript skill bundle is a comprehensive development toolkit for Salesforce Agentforce agents using the Agent Script DSL. It includes a Python-based syntax validator (hooks/scripts/agentscript-syntax-validator.py) that performs static and org-aware analysis by executing Salesforce CLI (sf) commands to verify metadata existence and user permissions. While the validator uses subprocess calls and constructs SOQL queries, these operations are strictly limited to the stated purpose of validating developer-authored .agent files against a target Salesforce environment. The extensive documentation and asset templates are consistent with professional development practices and show no signs of malicious intent, data exfiltration, or prompt injection.
Capability Tags
Capability Assessment
Purpose & Capability
Name/description, documentation, example bundles, and included validator scripts align with an authoring/validation helper for Salesforce Agent Script. There are no unrelated environment variables, binaries, or remote install steps requested.
Instruction Scope
SKILL.md focuses on authoring, validation, CLI workflows (sf agent validate/preview/publish) and guidance for .agent files. This is in-scope. A static scanner flagged a prompt-injection pattern within SKILL.md (see scan_findings_in_context); the visible instructions do not otherwise ask for unrelated system secrets or to exfiltrate files, but you should review the skill text and any templates for embedded instructions that try to override or redirect agent behavior.
Install Mechanism
No install spec is present (instruction-only), and there are no download/extract steps or external package installs. The repository includes two Python validator scripts and many documentation files; including code in the skill bundle is reasonable for linting/validation but review those scripts before running locally.
Credentials
The skill declares no required environment variables or credentials. It references Salesforce CLI commands and Named Credentials (typical for Salesforce deployments) which require regular Salesforce auth flows — appropriate for the described functionality and not requested directly by the skill.
Persistence & Privilege
Flags show always:false and normal model invocation allowed. agents/openai.yaml sets allow_implicit_invocation: true which means the skill may be implicitly invoked by platform triggers (e.g., when editing .agent files) — this is consistent with the stated trigger rules but you should confirm implicit invocation behavior meets your policies.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install sf-ai-agentscript - After installation, invoke the skill by name or use
/sf-ai-agentscript - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
Initial ClawHub publish.
Metadata
Frequently Asked Questions
What is Salesforce AI Agent Script?
Agent Script DSL for deterministic Agentforce agents. TRIGGER when: user writes or edits .agent files, builds FSM-based agents, uses Agent Script CLI (sf age... It is an AI Agent Skill for Claude Code / OpenClaw, with 88 downloads so far.
How do I install Salesforce AI Agent Script?
Run "/install sf-ai-agentscript" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Salesforce AI Agent Script free?
Yes, Salesforce AI Agent Script is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does Salesforce AI Agent Script support?
Salesforce AI Agent Script is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Salesforce AI Agent Script?
It is built and maintained by Anush DSouza (@dsouza-anush); the current version is v1.0.0.
More Skills