from frappe_claude_skill_package60
Guides correct implementation of Frappe/ERPNext permissions — roles, user permissions, perm levels, hooks and data masking to avoid common access-control mistak
Provides a deterministic, version-aware reference for implementing and auditing the Frappe/ERPNext permission model (v14-v16). It explains the five permission layers (role permissions, user permissions, perm levels, permission hooks, data masking), offers decision trees and API examples, and documents safe patterns and anti-patterns for protecting sensitive data.
Use this skill when designing or reviewing access control in a Frappe app, migrating permission configurations across versions, writing has_permission or permission_query_conditions hooks, or debugging why users can/cannot see or edit particular records. Helpful during code reviews, audits, and security hardening.
references/ (has_references=true) including permission API and examplesfrappe.has_permission, get_doc_permissions, sharing API, and hook patterns with explicit red-lines and version differences summarized.Best suited to agents that can run or produce code snippets: Claude Code, Codex-style coding agents, and general-purpose assistant agents that output Python/Frappé examples.
Frappe/ERPNext permissions reference guide covering the 5-layer permission system (roles, user permissions, perm levels, hooks, data masking). No scripts included — purely a documentation skill. Well-structured with decision trees, API references, anti-patterns, and version diffs (v14-v16). Useful for Frappe developers but niche audience.
High-quality documentation skill for a specific framework. Teaches security best practices (proper SQL escaping, permission checks). No executable code at all — entirely safe. The skill would benefit from bundled reference files and a procedural workflow section.
