SNOW-20.1: Agent Executing With Admin Privileges
๐จ Critical ยท ServiceNow Excessive Agency
Detects AI Agent configurations where the execution identity has admin role or the agent scripts use GlideRecord without Role Masking, granting unrestricted database access.
Detailsโ
| Field | Value |
|---|---|
| Rule ID | SNOW-20.1 |
| Severity | Critical |
| Category | ServiceNow Excessive Agency |
| Platforms | servicenow |
Remediationโ
Refer to the SquireX documentation for
remediation guidance specific to SNOW-20.1.