Stats
Actions
Tags
Help us improve
Share bugs, ideas, or general feedback.
From netsuite-suitecloud
Resolves NetSuite SDF permission configurations: customrole XML, permkey/permlevel values, script deployment permissions, and least-privilege role design. Validates against bundled reference data.
npx claudepluginhub anthropics/claude-plugins-official --plugin netsuite-suitecloudHow this skill is triggered — by the user, by Claude, or both
Slash command
/netsuite-suitecloud:netsuite-sdf-roles-and-permissionsThe summary Claude sees in its skill listing — used to decide when to auto-load this skill
Use this skill to resolve NetSuite permission questions with exact `permkey` and `permlevel` values.
Audits table permissions on Power Pages sites against site code and Dataverse metadata. Generates HTML report with severity-grouped findings (critical, warning, info, pass) and fix suggestions.
Generates 1C:Enterprise roles from JSON DSL, creating Roles/*.xml metadata and Rights.xml files with presets (@view/@edit), RLS templates, and Russian synonyms for rights/objects.
Generates Odoo security rules: ir.model.access.csv, ir.rule record rules, groups, and multi-company patterns. Debugs access denied errors.
Share bugs, ideas, or general feedback.
Use this skill to resolve NetSuite permission questions with exact permkey and permlevel values.
customrole object XML<permkey> values in SDF objectspermlevel values for roles or deploymentscustomrecord_* script IDreferences/permissions.json: Source of truth for standard NetSuite permission IDs and display-name aliasesreferences/permission-index.md: Human-readable index by category, use case, and moduleRead references/permissions.json whenever you need to confirm an exact ID. Use references/permission-index.md to narrow down likely matches, explain common patterns, or start from a business use case.
customrole XML, script deployment, role design, or code review feedback.references/permissions.json.permlevel that satisfies the use case.permkey, the recommended permlevel, and any important caveats.Use references/permissions.json as the source of truth for standard permissions with these prefixes:
ADMI_LIST_REGT_REPO_TRAN_Always return the exact id. Do not invent or abbreviate IDs.
If the permission is for a custom record type, the permkey is the custom record script ID, such as customrecord_invoice_batch. Do not look for custom record permissions in references/permissions.json; validate them against the project's custom record XML instead.
Some NetSuite UI labels map to the same underlying permission ID. When aliases exist, prefer the exact ID from references/permissions.json and mention the display name only as a human-readable explanation.
Use the smallest level that satisfies the behavior:
VIEW: Read and search onlyCREATE: Create records without updating existing onesEDIT: Create or update existing recordsFULL: Delete records or perform broad administrative controlDefault to least privilege. Treat FULL as exceptional and justify it explicitly.
If the request involves a script execution role, you MUST NOT recommend the built-in Administrator role for production use. Prefer a dedicated role with only the permissions the script needs. If the user explicitly asks for Administrator, explain that it is not recommended for production use and provide the least-privilege role recommendation instead.
When reviewing or generating a permission configuration, verify the following:
permkey exists exactly in references/permissions.json.customrecord_* permkey matches an actual project script ID.permlevel is one of VIEW, CREATE, EDIT, or FULL.permkey entries are removed from a single role definition.When answering with a permission recommendation or review result:
permkey.permlevel.Use these patterns as a starting point, then confirm in the references:
TRAN_SALESORD.TRAN_CUSTINVC.TRAN_PURCHORD.LIST_CUSTJOB.LIST_VENDOR.LIST_EMPLOYEE.LIST_FILECABINET.ADMI_RESTWEBSERVICES plus record-level permissions.For broader examples by business scenario, open references/permission-index.md.