Running Background Scripts in Scoped Applications on ServiceNow
- davidyang88
- 4 days ago
- 3 min read
Updated: 3 days ago
When working within the ServiceNow platform, developers often rely on background scripts to execute quick database operations or perform one-off tasks. However, challenges arise when attempting to run scripts in a restricted application scope—particularly with applications like Human Resources: Core (scope: sn_hr_core). This becomes even more complex if you wish to avoid creating cross-scope privileges or deploying unnecessary code to production.
This article provides clarity on executing background scripts within scoped applications, such as those prefixed with sn_. We will explore the limitations, available workarounds, and best practices that ensure security and development integrity across scoped applications in ServiceNow.
Understanding the Limitation
ServiceNow allows developers to select an application scope when running background scripts, but only for custom applications created within their instance. These custom applications typically have scope names starting with x_. Applications that are part of ServiceNow’s core or product suite—such as sn_hr_core—do not appear in the scope dropdown when accessing the Background Scripts module.
This limitation exists by design to preserve the integrity of managed scopes, which are protected to ensure consistent behavior across upgrades and patches.
Why You Cannot Directly Run Scripts in sn_ Scopes
Applications like Human Resources: Core are classified as privileged or managed applications. For these, ServiceNow does not allow direct script execution through the Background Script interface due to the potential for unauthorized modifications or cross-scope access violations. Attempting to do so without proper privileges or configuration will restrict execution, or in some cases, silently fail.
Verified Workarounds
Although direct access is restricted, there are approved methods for safely executing logic within these protected scopes:
1. Create a Fix Script in the Target Scope
A reliable and supported approach is to write a Fix Script within the application’s scope. Fix Scripts are used for one-time executions and can be easily created through the Studio interface:
Steps:
Navigate to Studio.
Open the Human Resources: Core application scope.
Create a new Fix Script (navigate to Fix Scripts > New).
Add the script you wish to execute and run it manually from the script record.
This allows scoped logic to be executed natively, without requiring background script access or introducing cross-scope dependencies.
2. Grant Cross-Scope Access Privileges (Advanced/Not Recommended for Testing)
If your use case necessitates access from another scope (e.g., your own custom application) to invoke functionality in the sn_ scope, you can configure cross-scope access manually:
Steps:
Navigate to System Definition > Cross-Scope Access (sys_restricted_caller_access).
Add a new record granting the necessary permissions between scopes.
Set access level to Allow all only if fully required and secure.
Note: This should be used with caution, ideally in sandbox or development environments, and only when absolutely necessary.
3. Utilize Scoped APIs
If the HR Core application exposes any public APIs or Script Includes, you can consume those in your own scoped application without modifying cross-scope permissions. This depends on how the HR module was designed and what has been made accessible externally.
Conclusion
Running background scripts directly within the scope of managed ServiceNow applications like Human Resources: Core is not permitted via the standard script execution interface. This is intended to maintain data and code integrity across environments. However, developers can work around this limitation using supported mechanisms such as scoped fix scripts or, where needed, configuring cross-scope privileges.
Key Takeaways:
Background script execution is restricted to applications created in your instance (prefix x_).
Use fix scripts within the application scope to run scoped logic securely.
Cross-scope privileges are available but should be used judiciously.
Always prioritize maintainability and upgrade safety when working across application scopes.
