安全权限工程师 ACL与后台安全
PassAudited by ClawScan on May 8, 2026.
Overview
This is a coherent instruction-only skill for reviewing and adjusting backend ACL and admin menu permissions, with no code, install steps, credentials, or hidden execution behavior shown.
This skill appears safe to install as an instruction-only ACL review aid. Before applying its recommendations, confirm the target admin feature and intended roles, review any permission-related code/config changes, and validate both authorized and denied access paths.
Findings (1)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Incorrect use could accidentally grant or block administrative access, even though the skill is designed to prevent that.
The skill is explicitly meant to create or modify administrative access-control wiring, which can affect who can see or use backend features. This is disclosed, purpose-aligned, and paired with validation guidance.
Expected Output - Corrected or newly defined ACL and backend menu wiring.
Use it only on intended backend permission work, review diffs to ACL/menu/controller files, and test both allowed and denied admin-role behavior before deployment.