SNOW-30.1: Application Scope Hygiene Violation
๐ด High ยท ServiceNow Scope Hygiene
Detects ServiceNow AI agents and tools operating outside their declared application scope. Cross-scope resource access without caller_access declarations bypasses scope isolation and may grant agents access to protected tables.
Detailsโ
| Field | Value |
|---|---|
| Rule ID | SNOW-30.1 |
| Severity | High |
| Category | ServiceNow Scope Hygiene |
| Platforms | servicenow |
| Compliance | SOC2_CC6, NIST_AI_RMF |
Remediationโ
Refer to the SquireX documentation for
remediation guidance specific to SNOW-30.1.