Salesforce AI Agent Script

v1.0.0

Agent Script DSL for deterministic Agentforce agents. TRIGGER when: user writes or edits .agent files, builds FSM-based agents, uses Agent Script CLI (sf age...

⭐ 0· 80·0 current·0 all-time

byAnush DSouza@dsouza-anush

OpenClaw Prompt Flow

Install with OpenClaw

Best for remote or guided setup. Copy the exact prompt, then paste it into OpenClaw for dsouza-anush/sf-ai-agentscript.

Previewing Install & Setup.

Prompt PreviewInstall & Setup

Install the skill "Salesforce AI Agent Script" (dsouza-anush/sf-ai-agentscript) from ClawHub.
Skill page: https://clawhub.ai/dsouza-anush/sf-ai-agentscript
Keep the work scoped to this skill only.
After install, inspect the skill metadata and help me finish setup.
Use only the metadata you can verify from ClawHub; do not invent missing requirements.
Ask before making any broader environment changes.

Command Line

CLI Commands

Use the direct CLI path if you want to install manually and keep every step visible.

OpenClaw CLI

Bare skill slug

openclaw skills install sf-ai-agentscript

ClawHub CLI

Package manager switcher

npx clawhub@latest install sf-ai-agentscript

Security Scan

Capability signals

CryptoCan make purchasesRequires OAuth token

These labels describe what authority the skill may exercise. They are separate from suspicious or malicious moderation verdicts.

VirusTotal

Benign

View report →

OpenClaw

Benign

high confidence

✓

Purpose & Capability

Name/description, documentation, example bundles, and included validator scripts align with an authoring/validation helper for Salesforce Agent Script. There are no unrelated environment variables, binaries, or remote install steps requested.

ℹ

Instruction Scope

SKILL.md focuses on authoring, validation, CLI workflows (sf agent validate/preview/publish) and guidance for .agent files. This is in-scope. A static scanner flagged a prompt-injection pattern within SKILL.md (see scan_findings_in_context); the visible instructions do not otherwise ask for unrelated system secrets or to exfiltrate files, but you should review the skill text and any templates for embedded instructions that try to override or redirect agent behavior.

✓

Install Mechanism

No install spec is present (instruction-only), and there are no download/extract steps or external package installs. The repository includes two Python validator scripts and many documentation files; including code in the skill bundle is reasonable for linting/validation but review those scripts before running locally.

✓

Credentials

The skill declares no required environment variables or credentials. It references Salesforce CLI commands and Named Credentials (typical for Salesforce deployments) which require regular Salesforce auth flows — appropriate for the described functionality and not requested directly by the skill.

ℹ

Persistence & Privilege

Flags show always:false and normal model invocation allowed. agents/openai.yaml sets allow_implicit_invocation: true which means the skill may be implicitly invoked by platform triggers (e.g., when editing .agent files) — this is consistent with the stated trigger rules but you should confirm implicit invocation behavior meets your policies.

Scan Findings in Context

[prompt-injection:ignore-previous-instructions] unexpected: A regex scanner found the token 'ignore-previous-instructions' in SKILL.md content. This is not expected for a documentation/validation skill and could be a benign artifact (instruction examples, warnings, or false positive). Treat it as a prompt-injection signal to review SKILL.md for any lines that attempt to override platform or agent safety instructions.

Assessment

This skill appears to be what it says: documentation, patterns, and local validators for Salesforce Agent Script authoring. Before installing or running it: 1) Manually inspect the two Python scripts (hooks/scripts/agentscript-syntax-validator.py and scripts/validate-asset-profiles.py) and any other executable files for unexpected network calls or code that runs arbitrary shell commands. 2) Confirm how your platform treats allow_implicit_invocation and triggers so the skill doesn't run automatically in contexts you don't expect. 3) Use normal Salesforce auth flows for CLI commands; do not paste long-lived secrets into skill configuration. 4) Because a prompt-injection pattern was flagged in SKILL.md, quickly scan the skill documentation for any content that attempts to instruct the agent to ignore previous safety instructions or to exfiltrate files/credentials; remove or sandbox any such lines. If you want, I can extract and show the contents of the two Python scripts and the relevant SKILL.md sections flagged for manual review.

references/fsm-architecture.md:393

Prompt-injection style instruction pattern detected.

About static analysis

These patterns were detected by automated regex scanning. They may be normal for skills that integrate with external APIs. Check the VirusTotal and OpenClaw results above for context-aware analysis.

Like a lobster shell, security has layers — review code before you run it.

latestvk974pzxc246xprbxnc7779d0kn84hpw0salesforcevk974pzxc246xprbxnc7779d0kn84hpw0

80downloads

0stars

1versions

Updated 2w ago

v1.0.0

MIT-0

SF-AI-AgentScript Skill

Agent Script is the code-first path for deterministic Agentforce agents. Use this skill when the user is authoring .agent files, building finite-state topic flows, or needs repeatable control over routing, variables, actions, and publish behavior.

Start with the shortest guide first: references/activation-checklist.md

Migrating from the Builder UI? Use references/migration-guide.md

When This Skill Owns the Task

Use sf-ai-agentscript when the work involves:

creating or editing .agent files
deterministic topic routing, guards, and transitions
Agent Script CLI workflows (sf agent generate authoring-bundle, sf agent validate authoring-bundle, sf agent preview, sf agent publish authoring-bundle, sf agent activate)
slot filling, instruction resolution, post-action loops, or FSM design

Delegate elsewhere when the user is:

maintaining Builder metadata agents (GenAiFunction, GenAiPlugin, GenAiPromptTemplate, Models API, custom Lightning types) → sf-ai-agentforce
designing persona / tone / voice → sf-ai-agentforce-persona
building formal test plans or coverage loops → sf-ai-agentforce-testing

If the user is in Builder Script / Canvas view but the outcome is a .agent authoring bundle, keep the work in sf-ai-agentscript.

Required Context to Gather First

Ask for or infer:

agent purpose and whether Agent Script is truly the right fit
Service Agent vs Employee Agent
target org and publish intent
expected actions / targets (Flow, Apex, PromptTemplate, etc.)
whether the request is authoring, validation, preview, or publish troubleshooting

Activation Checklist

Before you author or fix any .agent file, verify these first:

Exactly one start_agent block
No mixed tabs and spaces
Booleans are True / False
No else if and no nested if
No top-level actions: block
No @inputs in set expressions
linked variables have no defaults
linked variables do not use object / list types
Use explicit agent_type
Use @actions. prefixes consistently
Use run @actions.X only when X is a topic-level action definition with target:
Do not branch directly on raw @system_variables.user_input contains/startswith/endswith for intent routing
On prompt-template outputs, prefer is_displayable: False + is_used_by_planner: True
Do not assume @outputs.X is scalar — inspect the output schema before branching or assignment

For the expanded version, use references/activation-checklist.md.

Non-Negotiable Rules

1) Service Agent vs Employee Agent

Agent type	Required	Forbidden / caution
`AgentforceServiceAgent`	Valid `default_agent_user`, correct permissions, target-org checks, prefer `sf org create agent-user`	Publishing without a real Einstein Agent User
`AgentforceEmployeeAgent`	Explicit `agent_type`	Supplying `default_agent_user`

Full details: references/agent-user-setup.md

2) Recommended top-level block convention

Use this order for consistency in this skill's examples and reviews:

config:
variables:
system:
connection:
knowledge:
language:
start_agent:
topic:

Official Salesforce materials present top-level blocks in differing sequences, and local validation evidence indicates multiple orderings compile. Treat this as a style convention, not a standalone correctness or publish blocker.

3) Critical config fields

Field	Rule
`developer_name`	Must match folder / bundle name
`description`	Public docs/examples should use this config field
`agent_type`	Set explicitly every time
`default_agent_user`	Service Agents only

Local tooling also accepts agent_description: for compatibility, but this skill's public docs and examples should prefer description:.

4) Syntax blockers you should treat as immediate failures

else if
nested if
comment-only if bodies
top-level actions:
invocation-level inputs: / outputs: blocks
reserved variable / field names like description and label

Canonical rule set: references/syntax-reference.md and references/validator-rule-catalog.md

Recommended Workflow

Recommended Authoring Workflow

Phase 1 — design the agent

decide whether the problem is actually deterministic enough for Agent Script
model topics as states and transitions as edges
define only the variables you truly need

Phase 2 — author the `.agent`

create config, system, start_agent, and topics first
add target-backed actions with full inputs: and outputs:
use available when for deterministic tool visibility
normalize raw intent/validation signals into booleans or enums before branching; avoid direct substring checks on raw user utterances for critical control flow
keep post-action checks at the top of instructions: ->

Default authoring stance

Default to direct .agent authoring and edits in source control.
Use sf agent generate authoring-bundle --no-spec only when the user wants local bundle scaffolding.
Treat sf agent generate agent-spec as optional ideation / topic bootstrap, not the default workflow.
Do not route Agent Script users toward sf agent create or sf agent generate template.

Phase 3 — validate continuously

Validation already runs automatically on write/edit. Use the CLI before publish:

sf agent validate authoring-bundle --api-name MyAgent -o TARGET_ORG --json

The validator covers structure, runtime gotchas, target readiness, and org-aware Service Agent checks. Rule IDs live in references/validator-rule-catalog.md.

Phase 4 — preview smoke test

Use the preview loop before publish:

derive 3–5 smoke utterances
start preview with the start / send / end subcommands, not bare sf agent preview
if you use --authoring-bundle, always choose a mode explicitly: --simulate-actions or --use-live-actions
inspect topic routing / action invocation / safety / grounding
fix and rerun up to 3 times

Full loop: references/preview-test-loop.md

Phase 5 — publish and activate

sf agent publish authoring-bundle --api-name MyAgent -o TARGET_ORG --json

# Manual activation
sf agent activate --api-name MyAgent -o TARGET_ORG

# CI / deterministic activation of a known BotVersion
sf agent activate --api-name MyAgent --version <n> -o TARGET_ORG --json

Publishing does not activate the agent. For automation, prefer --version <n> --json so activation is deterministic and machine-readable.

Deterministic Building Blocks

These execute as code, not suggestions:

conditionals
available when guards
variable checks
direct set / transition to
run @actions.X only when X is a topic-level action definition with target:
variable injection into LLM-facing text

Important distinction:

Deterministic: set, transition to, and run @actions.X for a target-backed topic action
LLM-directed: reasoning.actions: utilities / delegations such as @utils.setVariables, @utils.transition, and {!@actions.X} instruction references

If you need deterministic behavior for something that is currently modeled as a reasoning-level utility, either:

rewrite it as direct set / transition to, or
promote it to a topic-level target-backed action and run that action

See references/instruction-resolution.md and references/architecture-patterns.md.

Cross-Skill Integration

Cross-Skill Orchestration

Task	Delegate to	Why
Build `flow://` targets	sf-flow	Flow creation / validation
Build Apex action targets	sf-apex	`@InvocableMethod` and business logic
Test topic routing / actions	sf-ai-agentforce-testing	Formal test specs and fix loops
Deploy / publish	sf-deploy	Deployment orchestration

High-Signal Failure Patterns

Symptom	Likely cause	Read next
`Internal Error` during publish	invalid Service Agent user or missing action I/O	references/agent-user-setup.md, references/actions-reference.md
`invalid input/output parameters` on prompt template action	Target template is in Draft status — activate it first	references/action-prompt-templates.md
Parser rejects conditionals	`else if`, nested `if`, empty `if` body	references/syntax-reference.md
Action target issues	missing Flow / Apex target, inactive Flow, bad schemas	references/actions-reference.md
Prompt template runs but user sees blank response	prompt output marked `is_displayable: True`	references/production-gotchas.md, references/action-prompt-templates.md
Prompt action runs but planner behaves like output is missing	output hidden from direct display but not planner-visible	references/production-gotchas.md, references/actions-reference.md
`ACTION_NOT_IN_SCOPE` on `run @actions.X`	`run` points at a utility / delegation / unresolved action instead of a topic-level target-backed definition	references/syntax-reference.md, references/instruction-resolution.md
Deterministic cancel / revise / URL checks behave inconsistently	raw `@system_variables.user_input` matching or string-method guards are being used as control-flow-critical validation	references/syntax-reference.md, references/production-gotchas.md
`@outputs.X` comparisons or assignments behave unexpectedly	the action output is structured/wrapped, not a plain scalar	references/actions-reference.md, references/syntax-reference.md
Preview and runtime disagree	linked vars / context / known platform issues	references/known-issues.md
Validate passes but publish fails	org-specific user / permission / retrieve-back issue	references/production-gotchas.md, references/cli-guide.md

Reference Map

Start here

Publish / runtime safety

Architecture / reasoning

Validation / testing / debugging

Examples / scaffolds

Project documentation

Score Guide

Score	Meaning
90+	Deploy with confidence
75–89	Good, review warnings
60–74	Needs focused revision
< 60	Block publish

Full rubric: references/scoring-rubric.md

Official Resources

Comments

Loading comments...