documenso-enterprise-rbac
Configure Documenso enterprise role-based access control and team management. Use when implementing team permissions, configuring organizational roles, or setting up enterprise access controls. Trigger with phrases like "documenso RBAC", "documenso teams", "documenso permissions", "documenso enterprise", "documenso roles".
74
70%
Does it follow best practices?
Impact
Pending
No eval scenarios have been run
Passed
No known issues
Optimize this skill with Tessl
npx tessl skill review --optimize ./plugins/saas-packs/documenso-pack/skills/documenso-enterprise-rbac/SKILL.mdQuality
Discovery
89%Based on the skill's description, can an agent find and select it at the right time? Clear, specific descriptions lead to better discovery.
This is a well-structured skill description that clearly identifies its niche (Documenso enterprise RBAC), provides explicit 'Use when' guidance, and lists specific trigger phrases. Its main weakness is that the capability descriptions could be more concrete—listing specific actions like creating teams, assigning roles, or configuring specific permission types rather than restating the domain in slightly different ways.
Suggestions
Increase specificity by listing concrete actions such as 'create and manage teams, assign member roles, configure permission hierarchies, set up organization-level access policies' instead of restating the domain.
| Dimension | Reasoning | Score |
|---|---|---|
Specificity | Names the domain (Documenso enterprise RBAC and team management) and some actions (implementing team permissions, configuring organizational roles, setting up enterprise access controls), but these are somewhat generic descriptions of the domain rather than listing multiple distinct concrete actions like 'create teams, assign roles, manage member permissions, configure access policies'. | 2 / 3 |
Completeness | Clearly answers both 'what' (configure Documenso enterprise RBAC and team management) and 'when' (explicit 'Use when...' clause with specific scenarios, plus a 'Trigger with phrases like...' section). Both components are explicitly stated. | 3 / 3 |
Trigger Term Quality | Explicitly lists natural trigger phrases including 'documenso RBAC', 'documenso teams', 'documenso permissions', 'documenso enterprise', 'documenso roles'. These are terms users would naturally use when seeking help with this specific functionality, and the product-specific prefixing reduces false matches. | 3 / 3 |
Distinctiveness Conflict Risk | Highly distinctive due to the product-specific qualifier 'Documenso' combined with the specific domain of RBAC/team management. The trigger terms are all prefixed with 'documenso', making conflicts with generic access control or other product skills very unlikely. | 3 / 3 |
Total | 11 / 12 Passed |
Implementation
50%Reviews the quality of instructions and guidance provided to agents. Good implementation is clear, handles edge cases, and produces reliable results.
This skill provides a reasonable overview of Documenso enterprise RBAC configuration with concrete code examples and useful reference tables. However, it leans heavily on generic application-level patterns (custom RBAC middleware, audit logging, multi-tenant architecture) that Claude already knows how to implement, rather than focusing on Documenso-specific configuration and API details. The skill would benefit from trimming generic patterns, adding validation checkpoints for security-sensitive operations, and splitting detailed code into bundle files.
Suggestions
Trim generic application patterns (custom RBAC middleware, audit logging wrapper, multi-tenant service) to brief mentions or move to bundle files — focus the main skill on Documenso-specific API calls and configuration.
Add explicit validation checkpoints: e.g., 'Verify team key works: call `teamClient.documents.listV0()` and confirm team documents are returned' after Step 1, and a test procedure after SSO configuration.
Split the detailed code examples (RBAC middleware, audit logging, multi-tenant) into separate bundle files referenced from the main skill to improve progressive disclosure.
Add more Documenso-specific SDK examples showing actual team management API calls (creating teams, adding members, listing team documents) rather than wrapper patterns.
| Dimension | Reasoning | Score |
|---|---|---|
Conciseness | The skill is reasonably well-structured but includes some unnecessary verbosity. The RBAC concepts explanation, the full audit logging wrapper, and the multi-tenant architecture pattern are somewhat generic patterns Claude already knows. The permission matrix and error handling tables are efficient, but the code examples could be tighter. | 2 / 3 |
Actionability | The code examples are mostly concrete and executable, but much of the content is application-level patterns (custom RBAC middleware, audit logging wrappers, multi-tenant service classes) that Claude could generate on its own rather than Documenso-specific API usage. The SSO setup is procedural text rather than executable commands. The actual Documenso SDK calls are minimal and somewhat buried. | 2 / 3 |
Workflow Clarity | Steps are numbered and sequenced logically from basic API key scoping through enterprise features. However, there are no validation checkpoints — no steps to verify team API key works, no way to test RBAC permissions are correctly applied, no verification that SSO is properly configured beyond 'test with a non-admin user first'. For operations involving access control (which are security-sensitive), missing validation caps this at 2. | 2 / 3 |
Progressive Disclosure | The content is well-sectioned with clear headers and a logical progression, but it's a monolithic file with substantial inline code that could be split into separate reference files (e.g., RBAC patterns, SSO setup, multi-tenant architecture). The single reference to 'documenso-migration-deep-dive' is good but there are no bundle files to support progressive disclosure. The permission matrix and error table are appropriately inline. | 2 / 3 |
Total | 8 / 12 Passed |
Validation
81%Checks the skill against the spec for correct structure and formatting. All validation checks must pass before discovery and implementation can be scored.
Validation — 9 / 11 Passed
Validation for skill structure
| Criteria | Description | Result |
|---|---|---|
allowed_tools_field | 'allowed-tools' contains unusual tool name(s) | Warning |
frontmatter_unknown_keys | Unknown frontmatter key(s) found; consider removing or moving to metadata | Warning |
Total | 9 / 11 Passed | |
- Commit
3a2d27d
- Reviewed
Table of Contents
Is this your skill?
If you maintain this skill, you can claim it as your own. Once claimed, you can manage eval scenarios, bundle related skills, attach documentation or rules, and ensure cross-agent compatibility.