At Salesforce we take security seriously, and we are always looking for different ways to ensure that our features are secure so the data in your org is protected. When we first introduced custom metadata types and custom settings, they were intentionally made accessible to anyone with API access. This allowed customers to use these types of objects to broadly drive forward the different aspects of their app and org configuration. As the Salesforce Platform becomes more powerful, the complexity of the solutions that our customers build expands as well. With this in mind, we are dedicated to providing improved tools that customers can use to control who has access to potentially sensitive configuration objects. We want to ensure those can be secured by default so that Admins don’t have to worry. This is why in Winter ’20 we are introducing some critical updates and a set of new features
Leave a Reply