Software InsightsAll Posts

Salesforce

Insights and articles on Salesforce

The audit plugin has grown from 22 checks to 23, added four new threat surfaces, and gained a fully configurable scoring model. Here is what changed and why it matters.

TL;DR: New checks cover flows without sharing, hardcoded credentials, guest user access, and public group over-sharing. The scoring model is now fully configurable via --scoring-config. SOQLs and Tooling queries live in JSON files outside the code.
SalesforceSecuritysf pluginCLITypeScriptOpen Source

Most Salesforce orgs are carrying security debt they don't know about. This plugin surfaces it in a single command.

TL;DR: Install @cclabsnz/sf-audit, run sf audit security --target-org <alias>, get an HTML report with a health score, a grade, and a prioritised list of findings.
SalesforceSecurityCLIDevOpssf plugin

We had a working Python script. Here is why we rewrote it as a native sf plugin, and the design decisions that made 22 parallel security checks practical.

TL;DR: A layered architecture, a cache dependency system to avoid redundant API calls, and a configurable scoring model.
SalesforceArchitectureTypeScriptsf pluginSecurityOpen Source

Master the complex challenge of mixing setup and non-setup object operations in Salesforce user provisioning workflows with production-proven patterns and error handling strategies.

TL;DR: Mixed DML restrictions prevent combining User/Group operations with standard objects in single transactions. Use async patterns, state machines, and sophisticated error handling to build reliable user provisioning systems.
SalesforceApexUser ManagementEnterprise ArchitectureSecurityMixed DML

Master advanced techniques for diagnosing, preventing, and recovering from CPU timeout errors in production Salesforce environments with architectural patterns that scale.

TL;DR: CPU timeouts kill production apps. Use CPU profiling, circuit breakers, and graceful degradation patterns to build resilient Apex that handles complex business logic without hitting governor limits.
SalesforceApexPerformanceGovernor LimitsArchitectureDebugging

Learn how to automatically share documents with grandparent records when uploaded to child records using clean, maintainable Salesforce code patterns.

TL;DR: Use Trigger Action Framework to automatically share Assessment documents with parent Cases, preventing duplicates and ensuring proper visibility across hierarchical data structures.
SalesforceApexTrigger Action FrameworkDocument ManagementArchitecture

A deep dive into the hidden costs of Salesforce Platform Events and the surprising optimization that saved us 50,000+ delivery allocations per day

TL;DR: The tab multiplication problem causes Platform Events to deliver to every browser tab separately. Use client-side tab coordination to reduce delivery costs by 60-80% and prevent allocation limit issues during peak usage.
SalesforceDevelopment Best PracticesPerformance OptimizationPlatform Events

Learn how to migrate data between Salesforce organizations with proven strategies, tool recommendations, and code solutions. Complete guide covering relationships, attachments, and migration order.

TL;DR: Use Jitterbit for Salesforce org migrations, plan import order carefully, maintain relationships with external IDs or VLOOKUPs, and use proxy objects for complex data types like attachments.
DevOps & CloudDevelopment Best Practicessalesforcedata-migration

© 2025 CloudCounsel Ltd. All rights reserved. Expert software development insights and consulting.