canva-enterprise-rbac
Enables management of access control and governance for Canva Enterprise integrations, enhancing organizational design capabilities.
Install this skill
or
74/100
Security score
The canva-enterprise-rbac skill was audited on May 19, 2026 and we found 10 security issues across 3 threat categories. Review the findings below before installing.
Categories Tested
Security Issues
medium line 101
Template literal with variable interpolation in command context
SourceSKILL.md
| 101 | message: `Role '${userRole}' cannot perform '${operation}'`, |
medium line 175
Template literal with variable interpolation in command context
SourceSKILL.md
| 175 | console.warn(`User ${userAuth.userId} missing scope: ${requiredScope}`); |
medium line 192
Template literal with variable interpolation in command context
SourceSKILL.md
| 192 | state: `reauth:${userId}`, |
medium line 216
Template literal with variable interpolation in command context
SourceSKILL.md
| 216 | console.warn(`Permission denied: user ${entry.userId} (role: ${entry.role}) attempted ${entry.action}`); |
low line 188
Access to .env file
SourceSKILL.md
| 188 | clientId: process.env.CANVA_CLIENT_ID!, |
low line 189
Access to .env file
SourceSKILL.md
| 189 | redirectUri: process.env.CANVA_REDIRECT_URI!, |
low line 134
External URL reference
SourceSKILL.md
| 134 | // GET https://api.canva.com/rest/v1/users/me/capabilities |
low line 232
External URL reference
SourceSKILL.md
| 232 | - [Canva Scopes](https://www.canva.dev/docs/connect/appendix/scopes/) |
low line 233
External URL reference
SourceSKILL.md
| 233 | - [User Capabilities API](https://www.canva.dev/docs/connect/api-reference/users/get-user-capabilities/) |
low line 234
External URL reference
SourceSKILL.md
| 234 | - [Canva Enterprise](https://www.canva.com/enterprise/) |
Scanned on May 19, 2026
View Security DashboardGitHub Stars 2.2K
Rate this skill
Categoryproduct
UpdatedMay 20, 2026
jeremylongshore/claude-code-plugins-plus-skills