ISVforce Guide

ISVforce Guide: Build and Distribute AppExchange Solutions
Get Ready to Distribute on AppExchange
Use Managed Packages to Develop Your AppExchange Solution
Manage Orgs with Environment Hub
Architectural Considerations for Group and Professional Editions
Security Requirements for AppExchange Partners and Solutions
Security Policy Requirements
Prevent Secure Coding Violations
Secure Your B2C Commerce Solution
Secure Your Tableau Accelerator
Secure Your Agentforce Solution
Secure Your Agentforce Custom Actions
Secure Your Agentforce Prompts
Design Security-Hardened Prompts
Validate User-Controlled Data Added to a Prompt
Use Random Sequence Enclosures and Prompt Sandwiching
Prompt Injection Mitigation Resources
Secure Your Connected Apps and External Client Apps
Pass the AppExchange Security Review
Manage Your AppExchange Listings
AgentExchange Go-To-Market App Guide
Sell on AppExchange with Checkout
Report Orders to Salesforce with the Channel Order App
Provide Free Trials of Your AppExchange Solution
OEM User License Guide
PDF

Secure Your Agentforce Prompts

A prompt is a structured set of instructions provided to an agent to guide its behavior. All Agentforce solutions listed on AppExchange that includes prompts must adhere to these requirements.

Sensitive and Secret Data

Make sure the prompts in your managed package don’t include sensitive or secret data. You can use merge fields to add user input or Salesforce org data to a prompt before it’s sent to the large language model (LLM), but don’t hard code this data.

Authentication Tokens

Prompts in your managed package must not ask users for authentication tokens. Authentication tokens include API keys, passwords, and so on. Requesting one-time passwords for user-verification purposes is permitted.

Prompt Storage

Securely store prompts within your managed package. Use one of these approved methods.

We recommend using these mechanisms wherever possible. However, if they aren’t sufficient for your use case, you can hard-code prompts directly in your Apex code.

Prompt Injection Mitigation

Prompt injection is a vulnerability where attacker-controlled input in a prompt causes unexpected behavior or LLM outputs. It can cause unintended data generation, data leaks, harmful content generation, and other adverse effects. Make sure prompts in your managed package guard against prompt-injection attacks. When constructing a prompt that contains user-controlled or untrusted input, employ a prompt-injection mitigation strategy. You may need to use a combination of mitigation techniques.

Prompt injection mitigation is an evolving area of security guidance. Monitor the area for new strategies that can help your company mitigate prompt injection risk.

Important