How does this skill prevent SOQL injection?

It identifies and blocks queries containing unescaped user input, suggesting parameterized patterns to ensure data security.

Does it support the Salesforce Tooling API?

Yes, it automatically detects objects that require the Tooling API and prompts the user to include the necessary flags.

Will this help with Salesforce governor limits?

Absolutely. It blocks queries without WHERE clauses on large objects and warns against deep subquery nesting to preserve API limits.

Can it fix my queries automatically?

The framework can auto-correct certain patterns, such as fixing mixed operators in OR clauses or mapping specific API names for Tooling objects.

Salesforce Query Safety Framework

Name: Salesforce Query Safety Framework
Author: RevPalSFDC

byRevPalSFDC

•

데이터베이스 관리

Safeguards Salesforce data operations by validating SOQL queries and jq expressions against dangerous patterns and governor limit risks.

The Salesforce Query Safety Framework provides critical guardrails for developers interacting with Salesforce data through Claude Code. It automatically intercepts SOQL queries to prevent common mistakes like missing filters on large objects, 'SELECT *' equivalents, and SOQL injection vulnerabilities. By integrating pre-tool-execution hooks, it lints commands, auto-corrects mixed operators, ensures proper Tooling API usage, and validates jq result processing to maintain high performance and prevent API quota exhaustion during RevOps tasks.

주요 기능

011 GitHub stars

02Automated Tooling API detection and parameter suggestions

03jq expression syntax and result path verification

04Pre-execution SOQL validation and linting

05Prevention of full table scans and inefficient query patterns

06Security checks for SOQL injection and unescaped input

사용 사례

01Automating the correction of common SOQL syntax and operator errors

02Ensuring compliance with Salesforce governor limits during automated data retrieval

03Protecting production environments from accidental resource-heavy queries

주요 기능

011 GitHub stars

02Automated Tooling API detection and parameter suggestions

03jq expression syntax and result path verification

04Pre-execution SOQL validation and linting

05Prevention of full table scans and inefficient query patterns

06Security checks for SOQL injection and unescaped input

사용 사례

01Automating the correction of common SOQL syntax and operator errors

02Ensuring compliance with Salesforce governor limits during automated data retrieval

03Protecting production environments from accidental resource-heavy queries