Skills
skills/nocobase/skills/nocobase-acl-manage/Gen Agent Trust Hub

nocobase-acl-manage

Pass

Audited by Gen Agent Trust Hub on May 1, 2026

Risk Level: SAFE
Full Analysis
  • [COMMAND_EXECUTION]: The skill uses the official NocoBase CLI ('nb') to perform ACL governance tasks. All command execution is preceded by a mandatory guard sequence that verifies environment context and CLI capability.
  • [EXTERNAL_DOWNLOADS]: The skill may enable official NocoBase plugins (e.g., '@nocobase/plugin-api-doc', '@nocobase/plugin-api-keys') to support runtime command discovery and authentication recovery. These are verified vendor resources from 'nocobase'.
  • [SAFE]: Implements a 'fail-closed' policy that prevents any write operations or ad-hoc script execution if environment checks or command discovery fail.
  • [SAFE]: Uses structured JSON payloads via the '--body-file' flag for all ACL write operations, which is a best practice to mitigate shell command injection risks.
Audit Metadata
Risk Level
SAFE
Analyzed
May 1, 2026, 08:37 AM