The Salesforce skill is coherent for Salesforce administration, but it gives an agent broad org-changing power and includes credential-revealing workflows without enough containment guidance.
Install only if you trust the publisher and will use it against Salesforce orgs where you are comfortable granting broad CLI authority. Do not let the agent print, save, or summarize raw auth output; redact tokens, auth URLs, instance/session details, and private key paths. Prefer sandbox orgs and least-privileged Salesforce users, and require explicit confirmation before Apex execution, raw API calls, or bulk data changes.