OrgTracer for Salesforce

About

OrgTracer shows you every automation running on any Salesforce object -- in the exact order Salesforce executes them.

Select any standard or custom object and instantly see a visual map of:

- Record-Triggered Flows (before-save and after-save)
- Apex Triggers (with before/after context splitting)
- Validation Rules (with formula field references)
- Workflow Rules (with actions: field updates, email alerts, tasks)
- Process Builders

Each automation is placed in its correct execution phase following the Salesforce Order of Execution, so you can see exactly what fires and when.

AUTOMATION MAP FEATURES:
- Interactive graph with pan, zoom, and minimap
- Click any automation node to see fields read, fields written, entry criteria, and outbound calls
- Active/inactive status at a glance (inactive automations shown dimmed)
- Searchable object picker with recent objects
- Keyboard navigation support
- Dark mode

PERMISSION TRACER FEATURES:
- Search any Salesforce user by name, email, or username
- See all assigned permission sets, permission set groups, and licenses at a glance
- Object-level CRUD permissions with source attribution (which permission set grants what)
- Muting permission set support -- see which permissions have been muted and by which muting set
- Field-level security drill-down for any object
- System permissions grid (API Enabled, Modify All Data, View All Data, Author Apex, etc.)
- Apex class, Visualforce page, Custom Permission, and Connected App access visibility
- Role hierarchy visualization with the selected user highlighted
- Organization-wide defaults context for sharing model understanding
- Tab visibility and page layout assignments

LOG DEBUGGER FEATURES:
- Upload or paste Salesforce debug logs for instant analysis
- Governor limit tracking with color-coded severity (ok/warning/danger/exceeded)
- SOQL and DML aggregation with caller attribution and drill-down
- HTTP callout tracking with endpoint, method, count, and timing
- Phase overlay mapping log events to the 16 execution phases
- Transaction drill-down to filter by individual transaction
- Truncation detection when logs are incomplete
- Web Worker parsing handles 5-20MB production logs without freezing

SECURITY TAB FEATURES (admin-only):
- Automated security posture scan with A–F grade and 0–100 score
- Detects critical risks: Modify All Data users, public guest user object access
- Detects high risks: admin sprawl (5+ active admins), dormant admin accounts (90+ days inactive), publicly writable OWD objects
- Detects medium risks: wildcard remote site settings
- Evidence drawer shows affected users/objects, rationale, and step-by-step fix instructions
- JSON export for audit records and ticket tracking
- Read-only scan — no changes made to your org

GENERAL:
- Works on any Salesforce org (Developer, Enterprise, Unlimited)
- No setup required -- just log into Salesforce and click the floating OrgTracer button

HOW IT WORKS:
For most orgs, OrgTracer reads your active Salesforce session cookie to query metadata via Salesforce REST and Tooling APIs. For orgs with API Access Control, configure a Connected App in OrgTracer Settings for OAuth authentication. All processing happens locally in your browser. No data is sent to any external server. Read-only access -- nothing in your org is modified.

PERFECT FOR:
- Salesforce Admins debugging automation conflicts
- Developers onboarding to a new org
- Architects reviewing automation complexity
- Security teams auditing user permissions, field-level access, and org security posture
- Compliance officers verifying least-privilege configurations and checking for dormant admin accounts
- Teams documenting their automation landscape
- Anyone asking "what happens when I save this record?"
- Anyone asking "why can't this user see this field?"
- Anyone asking "how secure is this org?"

PRIVACY:
No data collection. No analytics. No external servers. Everything runs in your browser. See our full privacy policy at https://orgtracer.com/privacy