Why SquireX for ServiceNow?
SquireX is the first and only SAST tool purpose-built for agentic AI security across Salesforce Agentforce, ServiceNow Now Assist, MuleSoft Agent Fabric, and MCP. While other tools focus on traditional GlideScript linting, SquireX analyzes the complete agentic attack surface โ from tool configuration and prompt injection to memory poisoning and cross-scope privilege escalation.
Agentic Depth, Not Just Script Lintingโ
Traditional ServiceNow code quality tools check for best practices in GlideScript โ variable naming, performance patterns, and API usage. SquireX goes far deeper:
| Capability | Traditional Tools | SquireX |
|---|---|---|
| GlideScript syntax checking | โ | โ |
| GlideRecord โ GlideRecordSecure enforcement | โ | โ SNOW-28 |
sn_aia_memory poisoning detection | โ | โ SNOW-12.2 |
| Role Masking cascade validation | โ | โ SNOW-20.2 |
| Cross-scope privilege escalation chains | โ | โ SNOW-30 |
| Business Rule โ Agent DML cascading | โ | โ SNOW-28.4 |
| Yokohama duplication Sybil detection | โ | โ SNOW-18.2 |
| MCP tool integrity validation | โ | โ SNOW-25/26/27 |
| Compliance-tagged SARIF output | โ | โ All rules |
Unique Capabilitiesโ
1. Go-Native GlideScript AST Parserโ
SquireX includes a full JavaScript AST parser written in Go (interpreter/capability/jsast/) that analyzes GlideScript at the abstract syntax tree level โ not regex. This enables precise detection of:
- GlideRecord in ACL scripts โ the recursive bypass vulnerability that traditional scanners miss entirely
setWorkflow(false)in agent contexts โ silent audit trail suppressionaddEncodedQuery()vsaddUserEncodedQuery()โ cross-tenant data exposure
2. Latent Memory Poisoning Detection (SNOW-12.2)โ
SquireX is the only tool that analyzes sn_aia_memory table records for embedded instruction-injection payloads. These attacks persist across sessions, silently altering agent reasoning every time it interfaces with a poisoned identity profile.
Detection patterns: "ignore previous instructions", "system:", "act as",
"developer mode", "bypass", "jailbreak", and 10+ more heuristics
3. Role Masking Cascade Validation (SNOW-20.2)โ
When agents use Dynamic User identity mode, SquireX validates that Role Masking is properly configured at every level โ Workflow โ Agent โ Skill โ Tool. Without this cascade, an admin user interacting with the agent grants it unrestricted instance access.
4. Compliance-Ready SARIF Outputโ
Every finding in SquireX's SARIF output includes regulatory compliance metadata:
{
"properties": {
"tags": ["security", "servicenow", "ServiceNow ACL"],
"category": "ServiceNow ACL",
"compliance": ["SOC2_CC6", "NIST_AI_RMF"]
}
}
Supported frameworks: EU AI Act, NIST AI RMF, SOC 2 CC6/CC7, HIPAA, PCI DSS, OWASP MCP Top 10.
Multi-Platform Parityโ
Unlike platform-specific tools, SquireX uses a single rule engine to scan across all major agent platforms:
- Salesforce Agentforce โ 79 rules (AGENTFORCE-* namespace)
- ServiceNow Now Assist โ 33 rules (SNOW-* namespace)
- MuleSoft Agent Fabric โ Covered by supply chain and MCP rules
- MCP Servers โ Covered by OWASP MCP Top 10 alignment
The same compliance tags, SARIF format, and CI/CD integration work identically across all platforms.
Getting Startedโ
npx squirex scan --platform servicenow ./your-update-sets/
See the Quick Start guide to scan your first ServiceNow project in under 5 minutes.