AGENTFORCE-SC-01: Malicious API Downgrade Injection
๐จ Critical ยท Supply Chain Security
Agentforce metadata requires sourceApiVersion 64.0 or higher. A lower API version constitutes a supply chain downgrade attack designed to bypass modern platform governance and legacy blockers.
Detailsโ
| Field | Value |
|---|---|
| Rule ID | AGENTFORCE-SC-01 |
| Severity | Critical |
| Category | Supply Chain Security |
| Compliance | SOC2_CC7, NIST_AI_RMF |
Remediationโ
Refer to the SquireX documentation for
remediation guidance specific to AGENTFORCE-SC-01.