Jamf Script Safety Reviewer
by LB Creations
Review Jamf and Kandji scripts for safer user context, prompts, logging, and rollout readiness.
- Validate console-user detection logic for Self Service scripts.
- Identify and redact accidental credential logging in MDM policies.
- Translate Jamf-specific script patterns for Kandji or Iru workflows.
Secure checkout via Stripe
Included in download
- Validate console-user detection logic for Self Service scripts.
- Identify and redact accidental credential logging in MDM policies.
- terminal automation included
- Ready for Codex CLI
See it in action
A real example of what this skill takes in and produces.
Sample output
Verdict: CAUTION Issue: Script uses 'whoami' which returns 'root' in Jamf policies, breaking user-path logic. Fix: Use stat -f %Su /dev/console to capture the current GUI user. Security: Flagged hardcoded API bearer token; replacing with a recommended token-rotation logic block.
Review Jamf and Kandji scripts for safer user context, prompts, logging, and rollout readiness.
Secure checkout via Stripe
Included in download
- Validate console-user detection logic for Self Service scripts.
- Identify and redact accidental credential logging in MDM policies.
- terminal automation included
- Ready for Codex CLI
- Instant install
See it in action
A real example of what this skill takes in and produces.
Sample output
Verdict: CAUTION Issue: Script uses 'whoami' which returns 'root' in Jamf policies, breaking user-path logic. Fix: Use stat -f %Su /dev/console to capture the current GUI user. Security: Flagged hardcoded API bearer token; replacing with a recommended token-rotation logic block.
About This Skill
Defensive script review for Mac admins
Jamf Script Safety Reviewer reviews Jamf Pro, Self Service, Kandji, and Iru scripts before production rollout. It focuses on user context, prompt behavior, logging hygiene, shell robustness, and staged deployment planning.
What it checks
- Console-user detection and root-versus-user assumptions.
- Prompt patterns that may expose sensitive input in logs, files, or process listings.
- Jamf API token handling from redacted examples.
- Quoting, PATH assumptions, temp files, cleanup, and rollback readiness.
- Kandji and Iru adaptation notes for migrated workflows.
Boundaries
This is a defensive admin-review skill. Use redacted or synthetic examples. It does not collect, validate, store, transmit, or request live passwords, tokens, recovery keys, or private tenant values.
Output
You get a ready, caution, or hold verdict, specific findings, safer replacement patterns, test steps, and rollout notes.
Use Cases
- Validate console-user detection logic for Self Service scripts.
- Identify and redact accidental credential logging in MDM policies.
- Translate Jamf-specific script patterns for Kandji or Iru workflows.
- Generate rollback procedures and staged-deployment validation steps.
- Audit shell robustness for improper PATH assumptions and quoting errors.
How to Install
mkdir -p ~/.claude/skills && curl -sL https://www.agensi.io/api/install/jamf-script-safety-reviewer | tar xz -C ~/.claude/skills/Free skills install directly. Paid skills require purchase - use the download button above after buying.
Reviews
No reviews yet - be the first to share your experience.
Only users who have downloaded or purchased this skill can leave a review.
Early access skill
Be the first to review this skill.
Only users who have downloaded or purchased this skill can leave a review.
Security Scanned
Passed automated security review
Permissions
No runtime dependencies. Works with SKILL.md-compatible agents including Claude Code, Codex CLI, Cursor, VS Code Copilot, Gemini CLI, and OpenClaw. Use redacted scripts or synthetic examples; do not paste live passwords, tokens, recovery keys, tenant URLs, or private customer data.
Creator
LB designs and builds autonomous AI systems optimized for local deployment. Specializing in distributed inference fleets, multi-model orchestration, and agent-native tooling, everything runs on your hardware, zero API fees.
Frequently Asked Questions
Learn More About AI Agent Skills
More Premium Skills
Bounty Security Pattern Master Library — 399 Vulnerability Patterns
A premium library of 399 vulnerability patterns and DeFi attack vectors for AI-driven bug hunting and security audits.
subagent-orchestrator (Develop based on the Claude Code sourcemap)
Turn your AI agent into a coordinator that manages parallel subagents for complex coding and research tasks.
software-architect
A structured framework for planning, reviewing, and evolving complex software systems with explicit trade-offs.
designing-hybrid-context-layers
Architects the right retrieval strategy for every query — teaching your agent when to use RAG, a knowledge graph, or a temporal index instead of defaulting to vector search for everything.