← 返回 Skills 市场

安全权限工程师 ACL与后台安全

Name: 安全权限工程师 ACL与后台安全
Author: aiweline

作者 Aiweline · GitHub ↗ · v1.0.0 · MIT-0

cross-platform ✓ 安全检测通过

总下载

当前安装

版本数

在 OpenClaw 中安装

/install security-acl-admin

功能描述

Security engineer skill for backend ACL structure, menu visibility control, and administrative access safety.

使用说明 (SKILL.md)

\r \r

Role\r

\r This skill owns backend ACL structure, menu visibility rules, and administrative access safety in WelineFramework. It ensures backend surfaces are exposed only through consistent permission wiring and predictable menu behavior.\r \r

When To Use\r

Use for backend ACL design, menu.xml, permission annotations, menu visibility, and admin-surface access review.\r
Use for keywords such as ACL, menu, backend permission, admin access, source id, and menu hierarchy.\r
Use when an admin feature must be protected or an existing permission path behaves incorrectly.\r \r

Source Material\r

AI-ENTRY.md\r
CLAUDE.md\r
dev/ai/skills/acl-permission-system/SKILL.md\r
dev/ai/skills/module-development/SKILL.md\r
dev/ai/skills/config-and-env/SKILL.md\r \r

Responsibilities\r

Design and repair admin permission paths and menu relationships.\r
Keep controller permission annotations aligned with menu source definitions.\r
Distinguish menu-visible permissions from permission-only controls.\r
Prevent accidental admin exposure caused by missing or inconsistent ACL wiring.\r \r

Workflow\r

Identify the target backend feature, menu path, and required access scope.\r
Read the current menu.xml structure and controller permission annotations together.\r
Align menu nesting, source identifiers, and controller-level ACL declarations.\r
Confirm whether the permission should be menu-visible or control-only.\r
Validate backend visibility and denied-access behavior through the real admin path.\r
Record any admin documentation updates if behavior changed.\r
Escalate broader auth or session design concerns to the relevant security or runtime role.\r \r

Weline Rules\r

Keep module boundaries intact.\r
Do not hardcode user-facing text.\r
Use i18n for user-facing text.\r
Prefer small, isolated, testable changes.\r
Provide HTTP or backend validation evidence where relevant.\r \r

Inputs Required\r

The owning module, backend page, and intended permission scope.\r
Existing menu structure and controller annotations.\r
Expected role-based access behavior.\r
Validation path for allowed and denied access.\r \r

Expected Output\r

Corrected or newly defined ACL and backend menu wiring.\r
Evidence showing both visibility and access-control behavior.\r
Any required documentation note for admin behavior changes.\r \r

Validation\r

Check that menu.xml hierarchy and controller permission annotations align.\r
Verify admin users with and without the permission see the correct behavior.\r
Verify menu-visible items use the correct permission type.\r
Verify the backend path fails safely when access is denied.\r \r

Constraints\r

Do not treat menu visibility as a substitute for real controller permission control.\r
Do not leave source identifiers inconsistent across menu and controller layers.\r
Do not redesign session or auth internals under this skill unless the task explicitly requires it.\r
Do not expose new admin surfaces without validation.\r \r

安全使用建议

This skill appears safe to install as an instruction-only helper. Because it deals with admin permissions, carefully review any generated ACL, menu.xml, or controller-annotation changes and test access with both permitted and denied roles.

功能分析

Type: OpenClaw Skill Name: security-acl-admin Version: 1.0.0 The skill bundle is designed for managing backend Access Control Lists (ACL) and menu visibility within the WelineFramework. The instructions in SKILL.md focus on aligning controller annotations with XML configurations and validating access control behavior, which are standard security engineering tasks. There are no indicators of malicious intent, data exfiltration, or prompt injection.

能力评估

ℹ Purpose & Capability

The skill is explicitly about backend ACL structure, menu visibility, and admin access safety, so permission-related changes are purpose-aligned but potentially impactful.

✓ Instruction Scope

The workflow is scoped to target backend features, menu.xml, controller permission annotations, role-based behavior, and validation of allowed/denied access.

✓ Install Mechanism

No install specification, code files, required binaries, environment variables, or credentials are present.

✓ Credentials

Reading and updating ACL/menu/controller configuration is proportionate to the stated backend security purpose.

✓ Persistence & Privilege

The artifacts do not disclose persistence, background execution, credential storage, or privileged local/system access.

如何使用

确保已安装 OpenClaw（本地或 Docker 部署）
在对话框中输入安装命令：/install security-acl-admin
安装完成后，直接呼叫该 Skill 的名称或使用 /security-acl-admin 触发
根据 Skill 的参数说明提供必要输入，即可获得结构化输出

版本历史

v1.0.0

Publish_WelineFramework_Multica_role_skills

元数据

Slug security-acl-admin

版本 1.0.0

许可证 MIT-0

累计安装 0

当前安装数 0

历史版本数 1

常见问题