CtrlK
BlogDocsLog inGet started
Tessl Logo

access-control-rbac

Role-based access control (RBAC) with permissions and policies. Use for admin dashboards, enterprise access, multi-tenant apps, fine-grained authorization, or encountering permission hierarchies, role inheritance, policy conflicts.

90

1.53x
Quality

88%

Does it follow best practices?

Impact

92%

1.53x

Average score across 3 eval scenarios

SecuritybySnyk

Passed

No known issues

SKILL.md
Quality
Evals
Security

Evaluation results

92%

35%

Content Platform Access Control

Node.js RBAC role hierarchy

Criteria
Without context
With context

Permission class

0%

100%

Wildcard matching

0%

100%

Role class with parent

87%

100%

Recursive hasPermission

50%

100%

RBACSystem maps

100%

100%

403 Forbidden shape

0%

100%

Auth/authz separation

75%

87%

Viewer role — read wildcard

25%

50%

Editor inherits viewer

100%

100%

Admin inherits editor

62%

62%

No hardcoded if-checks

100%

100%

Hierarchy reduces duplication

100%

100%

95%

31%

Healthcare Data Access Control Service

Python ABAC thread-safe engine

Criteria
Without context
With context

@dataclass Policy

0%

100%

Effect enum

0%

100%

threading.Lock in engine

100%

100%

Lock on add_policy

100%

100%

Shallow copy before eval

87%

100%

DENY short-circuits

0%

44%

Deny by default

100%

100%

Flask 401 unauthenticated

100%

100%

Flask 401 incomplete attrs

40%

100%

Flask 403 access denied

100%

100%

Condition factory functions

100%

100%

91%

30%

Enterprise HR Portal — Spring Security Authorization

Java Spring Security method-level authorization

Criteria
Without context
With context

@EnableWebSecurity

100%

100%

@EnableMethodSecurity prePost

100%

100%

JWT resource server

100%

100%

resource:action permission format

0%

100%

@PreAuthorize on methods

100%

100%

@PostAuthorize present

0%

100%

Custom bean in PreAuthorize

100%

100%

Custom expression root class

100%

100%

isResourceOwner method

44%

100%

hasDepartment method

25%

100%

hasRole + hasAuthority combo

0%

0%

Repository
secondsky/claude-skills
Commit

90d6bd7

Evaluated
Agent
Claude Code
Model
Claude Sonnet 4.6

Table of Contents

Content Platform Access ControlHealthcare Data Access Control ServiceEnterprise HR Portal — Spring Security Authorization

Is this your skill?

If you maintain this skill, you can claim it as your own. Once claimed, you can manage eval scenarios, bundle related skills, attach documentation or rules, and ensure cross-agent compatibility.

Claim skill