databricks-enterprise-rbac

Configure Databricks enterprise SSO, Unity Catalog RBAC, and organization management. Use when implementing SSO integration, configuring role-based permissions, or setting up organization-level controls with Unity Catalog. Trigger with phrases like "databricks SSO", "databricks RBAC", "databricks enterprise", "unity catalog permissions", "databricks SCIM".

Quality

—

Does it follow best practices?

Impact

—

No eval scenarios have been run

Securityby

Passed

No known issues

Quality

Content

65%

Reviews the quality of instructions and guidance provided to agents. Good implementation is clear, handles edge cases, and produces reliable results.

The body is highly actionable with executable code throughout and a clear step sequence, but it is verbose for a single file with no progressive disclosure into bundle files, and its RBAC/batch workflow lacks inline validation checkpoints. Tightening repetition and adding verify steps would lift the weakest dimensions.

Suggestions

Collapse the three repeated 'databricks account groups create' blocks into one example plus a note describing the group-specific variations, reducing token cost.

Add an inline validation checkpoint after the Unity Catalog GRANTs (e.g., a 'SHOW GRANTS ON CATALOG analytics' verify step with a fix-and-retry loop) to satisfy the feedback-loop requirement for batch/destructive RBAC operations.

Move the permission matrix, audit queries, and row/column-mask reference material into separate reference files referenced one level deep from the body, to improve progressive disclosure.

Dimension	Reasoning	Score
Conciseness	Mostly lean code/commands with minimal explanatory prose, but it repeats three near-identical 'databricks account groups create' blocks that could be one example plus a note, and runs ~260 lines of dense reference material; it could be tightened per the 'penalize verbosity' guideline.	2 / 3
Actionability	Provides fully executable bash CLI calls, Python SDK snippets, and SQL GRANT statements that are copy-paste ready with concrete role/policy specifics, matching the executable anchor.	3 / 3
Workflow Clarity	Seven steps are clearly sequenced, but this batch/destructive RBAC workflow lacks inline validation checkpoints (e.g., no 'SHOW GRANTS' verify step within the flow); per scoring_notes, missing feedback loops for database/batch operations caps this at 2.	2 / 3
Progressive Disclosure	No bundle files exist, so all reference-style content (permission matrix, audit queries, row-level security) sits inline in a single ~260-line file; it is well-sectioned but content that could be split out is inline, matching the 'could be better organized' anchor rather than a clean one-level-deep split.	2 / 3
	Total	9 / 12 Passed

Description

100%

Based on the skill's description, can an agent find and select it at the right time? Clear, specific descriptions lead to better discovery.

The description is concise, concrete, and complete — it names specific capabilities, gives an explicit 'Use when' trigger, lists natural trigger phrases, and occupies a distinct niche. It does not over-claim or pad with fluff.

Dimension	Reasoning	Score
Specificity	Lists multiple concrete actions across a named domain — 'Configure Databricks enterprise SSO, Unity Catalog RBAC, and organization management' and 'implementing SSO integration, configuring role-based permissions... setting up organization-level controls' — matching the multi-action anchor.	3 / 3
Completeness	Explicitly answers both what ('Configure Databricks enterprise SSO, Unity Catalog RBAC, and organization management') and when via a 'Use when...' clause, satisfying the explicit-trigger anchor.	3 / 3
Trigger Term Quality	Provides natural trigger phrases users would say — 'databricks SSO', 'databricks RBAC', 'databricks enterprise', 'unity catalog permissions', 'databricks SCIM' — with good coverage, matching the strong anchor.	3 / 3
Distinctiveness Conflict Risk	Targets a clear niche (Databricks enterprise RBAC/SSO via Unity Catalog) with distinct triggers unlikely to collide with other skills.	3 / 3
	Total	12 / 12 Passed

Validation

87%

Warnings & errors only

Checks the skill against the spec for correct structure and formatting. All validation checks must pass before discovery and implementation can be scored.

Validation — 14 / 16 Passed

Validation for skill structure

Criteria	Description	Result
allowed_tools_field	'allowed-tools' contains unusual tool name(s)	Warning
frontmatter_unknown_keys	Unknown frontmatter key(s) found; consider removing or moving to metadata	Warning

	Total	14 / 16 Passed

Repository: jeremylongshore/claude-code-plugins-plus-skills
Commit: 6e3a65f

Reviewed: 5 days ago

Table of Contents

Discovery Implementation Validation

Is this your skill?

If you maintain this skill, you can claim it as your own. Once claimed, you can manage eval scenarios, bundle related skills, attach documentation or rules, and ensure cross-agent compatibility.