The Batch Apex “Ghost Data” Mystery: Why finish() Sees What execute() Missed

Have you ever experienced this Salesforce scenario? Your Batch Apex job marks itself as “Completed,” yet you discover thousands of records that were never touched by your business logic. You check debug logs for the execute() methods and find nothing for those records. Yet, oddly, the finish() method seems aware of the total scope.

Welcome to the nuances of Batch Apex Transaction Isolation.

This post solves the mystery of why your finish() method can query data from the original start() scope that individual execute() methods never successfully processed.

The High-Level: It’s About Boundaries

In Salesforce Batch Apex, the finish() method executes in a completely separate transaction after all batches have completed (or failed).

Because of transaction isolation, each execute() chunk runs independently. If a chunk fails due to governor limits or unhandled exceptions, that entire chunk rolls back silently. The records in that chunk are never committed to the database in their processed state.

However, finish() gets the “30,000-foot view” post-completion. It can see the final state of the database (where those records still look unprocessed) and query the job metrics to see exactly what went wrong.

Visualizing the Disconnect

Here is the flow of a batch job. Notice how the execute() chunks are isolated lanes, while finish() is a separate checkpoint at the end.

Detailed Breakdown: Transaction Isolation

Batch Apex processes records in rigid, isolated transactions. Each execute() handles its scope (e.g., 200 records) with its own brand new set of governor limits.

If Chunk 3 hits a CPU timeout or a “Too many SOQL queries” error:

The execution stops immediately.
All DML operations within that specific chunk transaction are rolled back.
Crucially: The job does not abort. It moves on to Chunk 4.

The records in Chunk 3 remain untouched in the database.

When the finish() method finally runs in its own isolated transaction, it accesses two key things:

Full Job Metrics: By querying AsyncApexJob, it sees the reality of the failures.
Database State: It sees the database exactly as it is. Since Chunk 3 rolled back, re-querying the original criteria reveals records that still match the “unprocessed” criteria.

Example Scenario: You have 1,000 records split into 5 chunks of 200. Chunk 3 fails on a governor limit.

execute() view: It never finished processing those 200 records.
finish() view (via AsyncApexJob): TotalJobItems: 5, NumberOfErrors: 1, ExtendedStatus: "System.LimitException: Too many SOQL queries: 101"

The Code That Reveals the Discrepancy

Use your finish() method to act as the source of truth by querying the job status directly.

			
global void finish(Database.BatchableContext bc) {
    // 1. Query the AsyncApexJob to get the true execution metrics
    AsyncApexJob job = [SELECT Id, Status, NumberOfErrors,
                        TotalJobItems, CompletedDate, ExtendedStatus
                        FROM AsyncApexJob WHERE Id = :bc.getJobId()];
    System.debug('Job finished. Total Batches: ' + job.TotalJobItems);
    System.debug('Batches with Errors: ' + job.NumberOfErrors);
    if (job.NumberOfErrors > 0) {
        // ExtendedStatus often contains the specific limit exception message
        System.debug('Failure Reason (ExtendedStatus): ' + job.ExtendedStatus);
        // Optional: Re-run the original start query to identify exactly which
        // records remain unprocessed in the database.
        // List<Account> unprocessed = Database.query(yourOriginalSOQLString);
        // System.debug(unprocessed.size() + ' records remain unprocessed in DB.');
    }
}

		

Dashboard for your security settings

If you are wondering do we have dashboard where we can check all the security settings of your org.

The Answer is YES!

Salesforce provides a dashboard named Health check which gives you an ability to know all about your org’s security settings.
You can find it in ‘SETUP’
Setup –> Quick Find Box –> type –> Health Check

It helps you to identify any vulnerabilities to your system and fix them.
It has the scales between 0-100. 100 know for more secured
You can upload your custom Baseline to measure the security . Salesforce Baseline standard is default baseline
4 types of Risk: High Risk, Medium Risk, Low Risk, Informational
As an standard value, salesforce provides a recommended value against all the risk that can be minimized.

Limit for List view filters

You can have maximum of 10 list view filters

If more filters are required you need to override the page with VF page

How to move the content to next PDF page if content doesn’t fit in the page?

If you want to move the content dynamically in the PDF page when the content does not fit in the PDF.
See below screenshot where opportunity table doesn’t fit into the PDF page

You want to achieve below screenshot

Use CSS page-break-after Property

style=”page-break-after:always;” inside div tag

Error OAUTH_APP_ACCESS_DENIED connecting Postman to Salesforce

After inserting all the correct information , if you are unable to Generate new access token and receiving following error OAUTH_APP_ACCESS_DENIED.

You have to enable users to Self-authorize

Setup >> Manage Connected Apps[Lightning]/ Connected Apps under Manage Apps[ Classic] >> Edit against connected app >> Select All Users may self-authorize in permitted users picklist

Connected apps

You are all set. Go ahead and try again and you will be prompted with allow window

How to get Id of the Object

Salesforce allows you to get the Key Prefix.

Key Prefix is 3 character unique key for each Object. There are two ways to find the Key prefix.

1) using schema.getGlobalDescribe()

For(Schema.SObjecttype obj: Schema.getGlobalDescribe().Values()){

System.debug(obj.getDescribe());
System.debug(obj.getDescribe().getKeyPrefix());

}

2) Every record Id first 3 letters is a Object KeyPrefix;

Contact cc: [Select id from Contact limit 1];
String keyPrefix = String.valueOf(cc.id).substring(0,3);