Forms Made Easy — agentic threat model
Forms Made Easy presents a moderate-to-high risk profile primarily due to its deep integration with Salesforce (Multi-Object Workflows and Smart Mapping), where AI-assisted generation could be manipulated via prompt injection to alter database schemas or exfiltrate sensitive CRM data.
OWASP AIVSS score rationale
| Autonomy of Action | 0.30 | |
| Goal-Driven Planning | 0.20 | |
| Self-Modification | 0.00 | |
| Dynamic Tool Use | 0.60 | |
| Persistent Memory | 0.20 | |
| Contextual Awareness | 0.40 | |
| Dynamic Identity | 0.30 | |
| Multi-Agent Interactions | 0.00 | |
| Non-Determinism | 0.40 | |
| Opacity & Reflexivity | 0.20 |
Scored with the canonical OWASP AIVSS formula (AIVSS calculator reference); agentic risk factors estimated from the agent’s described capabilities.
MAESTRO 7-layer threat model
Per-layer threats for this agent. Layers tagged “not certain from listing” are general, caveated commentary where the public description didn’t pin that layer.
Not certain from the listing — The specific foundation models powering the 'AI Assisted Form Creation' are undisclosed. Risks include prompt injection manipulating the form generation logic to insert malicious scripts or phishing fields.
Not certain from the listing — The data operations layer handling Salesforce schema ingestion and user inputs is unspecified. Risks include exposure of sensitive Salesforce metadata or schema structures during the RAG/context-retrieval phase.
Not certain from the listing — The orchestration framework translating AI intent into form structures and Salesforce mappings is unknown. Insecure tool integration could allow an attacker to abuse 'Multi-Object Workflows' to modify unauthorized Salesforce objects.
Not certain from the listing — Infrastructure hosting details are omitted. Key threats include insecure file upload handling (allowing malware upload to Salesforce) and SSRF vulnerabilities within the 'Easy Sharing & Embeds' functionality.
Not certain from the listing — There is no mention of LLM guardrails, input filtering, or transaction logging. This creates blind spots where malicious prompt injections or anomalous form generation requests could go undetected.
The agent claims to be 'Secure & Compliant' and features 'Smart Salesforce Mapping'. The primary security challenge lies in enforcing strict OAuth scopes and least-privilege access to prevent the AI from accessing or modifying unauthorized Salesforce tables.
Not certain from the listing — No multi-agent orchestration is described. The ecosystem risk is limited to horizontal integration vulnerabilities between the form builder, the embedded host websites, and the Salesforce AppExchange environment.
MAESTRO — the 7-layer agentic threat-modeling framework (Cloud Security Alliance / Ken Huang).
These scores are auto-generated from public information (the agent's own listing, docs, and repository) using the canonical OWASP AIVSS formula and the MAESTRO framework — an estimate for guidance, not a penetration test, audit, or certification. See the scoring methodology. Are you the vendor? Factual corrections are free.