Flow Scanner
Use the Flow Scanner engine to audit Salesforce Flows and report detailed information about security issues.
Run this command to view detailed information about all the Flow Scanner rules that are bundled with Code Analyzer:
See Flow Scanner Rules Reference for additional details.
For information on how to modify rule settings, such as their severity or tags, see Customize Your Configuration. While the examples show modifying rules for the ESLint and Regex engines, you use the same process to modify Flow Scanner rules.
You can configure the Flow Scanner engine with the settings listed in this table. See Customize the Configuration for details on how to apply the settings.
Field | Type | Description |
---|---|---|
disable_engine | boolean | Whether to turn off the 'flow' engine so that it is not included when running Code Analyzer commands. Default value is false . |
python_command | string | Indicates the specific Python command to use for the 'Flow Scanner' engine. May be provided as the name of a command that exists on the path, or an absolute file path location. If unspecified, or specified as null, then an attempt will be made to automatically discover a Python command from your environment. Default value is null . |