docs: add AI Risk Hub permissions to roles table and hub docs

[claudiacodacy]

Summary

• Adds two new rows to the GitHub, GitLab, and Bitbucket permissions tables: Access AI Risk Hub Overview (all org members) and Access AI Risk Hub AI assets and Tools & workflows (org managers and admins only)
• Updates the AI Risk Hub page intro to include a table clarifying which roles can access each tab

Context

Resolves OD-164 — confirmed expected behavior:

• All users can see the Overview tab
• Only organization managers and admins can see the AI assets and Tools & workflows tabs

Test plan

• Verify permissions table rows render correctly for all three Git providers (GitHub, GitLab, Bitbucket)
• Verify the AI Risk Hub intro table renders and links resolve correctly
• Confirm the permission behavior with the product team if org manager access hasn't been verified in staging

🤖 Generated with Claude Code

[github-actions]

Overall readability score: 54.23 (🟢 +0)

File	Readability
roles-and-permissions-for-organizations.md	61.91 (🟢 +0)
ai-risk-hub.md	58.12 (🟢 +0.13)

View detailed metrics

🟢 - Shows an increase in readability
🔴 - Shows a decrease in readability

File	Readability	FRE	GF	ARI	CLI	DCRS
roles-and-permissions-for-organizations.md	61.91	38.32	8.84	12.2	12.93	6.22
	🟢 +0	🟢 +0	🟢 +0	🟢 +0	🟢 +0	🟢 +0
ai-risk-hub.md	58.12	35.13	8.93	11.2	13.73	7.29
	🟢 +0.13	🟢 +0.2	🟢 +0.09	🟢 +0	🔴 -0.06	🟢 +0.01

Averages:

	Readability	FRE	GF	ARI	CLI	DCRS
Average	54.23	43.17	10.9	12.3	12.24	8.01
	🟢 +0	🟢 +0	🟢 +0	🟢 +0	🟢 +0	🟢 +0

View metric targets

Metric	Range	Ideal score
Flesch Reading Ease	100 (very easy read) to 0 (extremely difficult read)	60
Gunning Fog	6 (very easy read) to 17 (extremely difficult read)	8 or less
Auto. Read. Index	6 (very easy read) to 14 (extremely difficult read)	8 or less
Coleman Liau Index	6 (very easy read) to 17 (extremely difficult read)	8 or less
Dale-Chall Readability	4.9 (very easy read) to 9.9 (extremely difficult read)	6.9 or less

[codacy-production]

Up to standards ✅

🟢 Issues 0 issues

Results:
0 new issues

View in Codacy

AI Reviewer: first review requested successfully. AI can make mistakes. Always validate suggestions.

_{TIP This summary will be updated as you push new changes.}

[gemini-code-assist]

Code Review

This pull request updates the documentation regarding the AI Risk Hub access permissions, roles, and Software Composition Analysis (SCA) daily re-scan requirements. Specifically, it introduces a table mapping AI Risk Hub tab access to roles, updates the SCA findings behavior explanation, details the requirements for proactive SCA scanning using Trivy, and updates the role-and-permission tables for GitHub, GitLab, and Bitbucket. The review feedback suggests minor copy-editing improvements to enhance readability, such as splitting a long sentence regarding SCA findings and avoiding repetitive phrasing in the Trivy configuration instructions.

Important

The consumer version of Gemini Code Assist on GitHub is being sunset. Starting June 18, 2026, new organization installations will be blocked, and all code review activity will officially cease on July 17, 2026.
For more details on the timeline and next steps, please review the Help Documentation.

[codacy-production]

Pull Request Overview

The documentation updates are up to standards and align with the specified requirements for AI Risk Hub role permissions. The changes correctly reflect the differentiated access levels across GitHub, GitLab, and Bitbucket integration tables. No blockers or security concerns were identified, and the implementation of the introductory table in the AI Risk Hub documentation satisfies the requested structural changes.

Test suggestions

• Verify the 'Access AI Risk Hub Overview' row is correctly added and populated in the GitHub permissions table.
• Verify the 'Access AI Risk Hub Overview' row is correctly added and populated in the GitLab permissions table.
• Verify the 'Access AI Risk Hub Overview' row is correctly added and populated in the Bitbucket permissions table.
• Verify the 'Access AI Risk Hub AI assets and Tools & workflows' row is restricted to managers/admins across all provider tables.
• Verify the AI Risk Hub intro table displays correct roles and contains functional anchor links for Overview, AI Assets, and Tools & Workflows.

Prompt proposal for missing tests

Consider implementing these tests if applicable:
1. Verify the 'Access AI Risk Hub Overview' row is correctly added and populated in the GitHub permissions table.
2. Verify the 'Access AI Risk Hub Overview' row is correctly added and populated in the GitLab permissions table.
3. Verify the 'Access AI Risk Hub Overview' row is correctly added and populated in the Bitbucket permissions table.
4. Verify the 'Access AI Risk Hub AI assets and Tools & workflows' row is restricted to managers/admins across all provider tables.
5. Verify the AI Risk Hub intro table displays correct roles and contains functional anchor links for Overview, AI Assets, and Tools & Workflows.

_{TIP Improve review quality by adding custom instructions
TIP How was this review? Give us feedback}