Skill

security-governance-framework

Salesforce security administration governance and common mistake prevention. Use when managing profiles, permission sets, roles, sharing rules, field-level security, or user provisioning. Provides governance rules, LLM error prevention, permission patterns, and audit requirements.

From opspal-salesforce

Install

Run in your terminal

npx claudepluginhub revpalsfdc/opspal-commercial --plugin opspal-salesforce

Tool Access

This skill is limited to using the following tools:

ReadGrepGlob

Supporting Assets

View in Repository

audit-checklist.md

governance-rules.md

llm-common-mistakes.md

permission-patterns.md

Skill Content

Similar Skills

agent-harness-construction

Designs and optimizes AI agent action spaces, tool definitions, observation formats, error recovery, and context for higher task completion rates.

ecc

140.7k

agent-payment-x402

Enables AI agents to execute x402 payments with per-task budgets, spending controls, and non-custodial wallets via MCP tools. Use when agents pay for APIs, services, or other agents.

ecc

140.7k

agent-eval

Compares coding agents like Claude Code and Aider on custom YAML-defined codebase tasks using git worktrees, measuring pass rate, cost, time, and consistency.

ecc

140.7k

Stats

Parent Repo Stars0

Parent Repo Forks1

Last CommitMar 18, 2026

Actions

View Source View Plugin View on GitHub View README

security-governance-framework

From opspal-salesforce

Quick Reference

LLM Common Mistakes (CRITICAL)

NEVER query these objects - they don't exist:

Hallucinated Object

Correct Approach

RecordTypeVisibility

Use Metadata API, parse recordTypeVisibilities

ApplicationVisibility

Use Metadata API, parse applicationVisibilities

FieldPermission (direct)

Use Metadata API, parse fieldPermissions

ObjectPermission (direct)

Use Metadata API, parse objectPermissions

TabVisibility

Use Metadata API, parse tabSettings

Governance Tiers

Tier

Risk Level

Approval Required

Tier 1

Low

Automated

Tier 2

Medium

Single approver

Tier 3

High

Multiple approvers

Tier 4 (Security)

Critical

Security-lead + approver

Bulk Operations Performance

Operation

Sequential

Parallel

Improvement

Permission checks (20 users)

50s

6.2s

8x faster

Security audits (40 profiles)

60s

15x faster

Metadata from cache

24s

4.8s

5x faster

User provisioning (30 users)

60s

12x faster

Security Governance Framework

When to Use This Skill

Managing profiles and permission sets
Configuring field-level security (FLS)
Setting up sharing rules and org-wide defaults
Provisioning users and assigning permissions
Running security audits and health checks
Preventing common LLM security errors

Quick Reference

LLM Common Mistakes (CRITICAL)

NEVER query these objects - they don't exist:

Hallucinated Object	Correct Approach
`RecordTypeVisibility`	Use Metadata API, parse `recordTypeVisibilities`
`ApplicationVisibility`	Use Metadata API, parse `applicationVisibilities`
`FieldPermission` (direct)	Use Metadata API, parse `fieldPermissions`
`ObjectPermission` (direct)	Use Metadata API, parse `objectPermissions`
`TabVisibility`	Use Metadata API, parse `tabSettings`

Governance Tiers

Tier	Risk Level	Approval Required
Tier 1	Low	Automated
Tier 2	Medium	Single approver
Tier 3	High	Multiple approvers
Tier 4 (Security)	Critical	Security-lead + approver

Bulk Operations Performance

Operation	Sequential	Parallel	Improvement
Permission checks (20 users)	50s	6.2s	8x faster
Security audits (40 profiles)	60s	4s	15x faster
Metadata from cache	24s	4.8s	5x faster
User provisioning (30 users)	60s	5s	12x faster

Detailed Documentation

See supporting files:

governance-rules.md - Security policies and approval workflows
permission-patterns.md - Two-tier permission set architecture
llm-common-mistakes.md - Prevent AI-generated errors
audit-checklist.md - Security review requirements