AGENTFORCE-SC-02: Silent Schema Desync Exploit
๐ด High ยท Supply Chain Security
When a schema.json is modified, its parent genAiFunction-meta.xml must also be modified in the same deployment payload. Salesforce silently ignores schema updates unless the XML is tampered with, causing hallucination masking.
Detailsโ
| Field | Value |
|---|---|
| Rule ID | AGENTFORCE-SC-02 |
| Severity | High |
| Category | Supply Chain Security |
| Compliance | SOC2_CC7, NIST_AI_RMF |
Remediationโ
Refer to the SquireX documentation for
remediation guidance specific to AGENTFORCE-SC-02.