OrgScan  ·  Salesforce Org Audit
Currently in Private Beta

Findings, not vibes.

Audit any Salesforce org in under an hour.

OrgScan finds the dead users, undocumented flows, and hard-coded record IDs your client doesn't know about — then writes the audit report you hand them at the end of the engagement.

Run a free scan See a sample report

Section 01 · What it finds

Seven checks. Every one of them concrete.

  1. Dead licensed users

    Users who haven't logged in within the configured window — by username, license type, last-login date, and cost. ~23 in a typical 100-seat org.

  2. Outdated flow API versions

    Every flow's API version surfaced and ranked against the platform's current minimum. Each one is a future deployment risk.

  3. Flows missing descriptions

    Then OrgScan reads the metadata and writes the description back to Salesforce for you, via Claude. AI text written, not pasted.

  4. Unused custom fields

    Custom fields with no formula references, no flow references, no report column hits, no API calls. Deletable candidates, surfaced cleanly.

  5. Excessive permissions

    Profiles and permission sets with Modify All Data or View All Data — the two grants that nobody should own without a reason.

  6. Validation rules without descriptions

    Rules that block users with errors no admin can explain. Every one a Slack ticket waiting to happen.

  7. Hard-coded record IDs in flows

    Eighteen-character IDs sitting in formula nodes, decision conditions, and record creates. Production-fragile by definition.

Section 02 · What you hand them

The PDF is the deliverable.

Client-ready, signed, defensible.

You walk in with the audit. The client walks out with the report.

Every finding is a numbered clause — 01, 02, 03 — with a record reference and a recommended action. The cover is your branding. The interior is the same forensic spec the app uses, ported to paper.

Geist on parchment. Cinnabar where things are broken, verdigris where they have aged well, parchment where the document has been stamped. Nothing in it could have been generated by ChatGPT.

"Findings, not vibes. The PDF is the deliverable."

OrgScan audit report — cover page (Audit Report / Acme Corporation / 07 CRITICAL FINDINGS stamp) layered over an interior Flows section showing numbered findings with mineral severity badges.

Section 03 · How it works

Three steps. Under an hour.

Connect

Authorize OrgScan against any Salesforce org.

OAuth + refresh token. Sandbox or production — labelled clearly in the UI so you never write to the wrong one. Disconnect any time. We never store the org's data, only the connection.

~2 minutes

Scan

Run the seven checks against the live metadata.

Every finding lands with a record reference, a severity, and a one-click link back to the object in Salesforce. AI flow descriptions are written on demand and pushed back to the org as real metadata, not pasted text.

~10 minutes

Export

Generate the client-ready PDF.

The same Oxidized Plate spec as the app, ported to paper. Numbered clauses, mineral severities, action lines on every finding. Hand it to your client and let the document do the closing.

~30 seconds

§ Private Beta

Audit your first org this week.

OrgScan ships with Inspired Ideation Strategies. Currently invite-only while we tune the second wave of checks. Reach out and we'll get you set up against a sandbox in a single call.

Request access Try the app