Fix security script CE0066: revoke entity access rules at end of script

ako · claude · ako · commit 49b4f2317dd9 · 2026-03-24T20:44:58.000Z
Partial entity access rules (not all entities covered by all roles)
trigger CE0066 regardless of security level. Added REVOKE statements
at the end to clean up access rules created during the demo.

Co-Authored-By: Claude Opus 4.6 (1M context) &lt;noreply@anthropic.com&gt;
diff --git a/mdl-examples/doctype-tests/08-security-examples.mdl b/mdl-examples/doctype-tests/08-security-examples.mdl
@@ -614,4 +614,15 @@ SHOW ACCESS ON PAGE SecTest.Customer_Overview;
 SHOW ACCESS ON PAGE SecTest.Order_Overview;
 /
 
+-- ############################################################################
+-- PART 10: CLEANUP
+-- ############################################################################
+-- Revoke entity access to avoid CE0066 "entity access out of date".
+-- When a module has partial access rules (not all entities covered by all
+-- roles), MxBuild reports CE0066 regardless of security level.
+REVOKE SecTest.Administrator ON SecTest.Customer;
+REVOKE SecTest.User ON SecTest.Customer;
+REVOKE SecTest.User ON SecTest.Order;
+REVOKE SecTest.Manager ON SecTest.Customer;
+
 
