安全合规 技能

Framework-directable information security risk assessment. Identifies threats, evaluates likelihood/impact via a 3x3 matrix, maps findings to any compliance...

Securely connect and manage Gmail, Calendar, Drive, Jira, Notion, GitHub, and 50+ enterprise tools via a single OAuth2 gateway.

Clause-by-clause BAA analysis against 45 CFR 164.504(e)(2). Evaluates all 9 required HIPAA provisions with risk scoring and recommended contract language for...

Bidirectional mapping between document sections and compliance framework controls with confidence scoring. Produces per-section control mappings and per-cont...

Safe OpenClaw config planning/apply workflow with bilingual execution receipts.

Assess compliance documents against HIPAA Security Rule and Privacy Rule requirements. Produces structured findings with coverage status, confidence scores,...

Compliance-specific Q&A with regulatory interpretation guardrails, source attribution, confidence scoring, and escalation triggers when context is insufficie...

Safe OpenClaw config planning/apply workflow with bilingual execution receipts.

PDF contract redaction tool. Use when the user needs to redact sensitive information from scanned PDF contracts. The tool performs OCR to extract text, ident...

Security audit and hardening for AI agents — credential hygiene, secret scanning, prompt injection defense, data leakage prevention, and privacy zones.

Billions/Iden3 authentication and identity management tools for agents. Link, proof, sign, and verify.

Comprehensive HIPAA compliance posture assessment for agent and API contexts. Runs a structured intake covering all Seven Elements of an effective compliance...

抖音/短视频违禁词和敏感词检测（本地词库版，无需 API Key）。每天首次使用自动从 GitHub 开源词库更新本地缓存，离线检测文案合规性。支持多词库合并（广告极限词、平台限流词、暴恐、色情、涉枪涉爆等）。使用场景：(1) 生成短视频文案后自动检测违禁词，(2) 用户要求检查某段文字是否有问题，(3) 抖音/...

Checks prompts and outputs for harmful intent, bias, and alignment with Claude's helpful, honest, and harmless guidelines to ensure safe content.

Enforce strict security rules to protect sensitive information (API keys, tokens, credentials, PII, financial data). Always sanitize or refuse to reveal full...

Epistemic verification for AI agent outputs. Use ThoughtProof to verify AI reasoning, detect blind spots, and build consensus across multiple model families....

Billions/Iden3 authentication and identity management tools for agents. Link, proof, sign, and verify.

Automatically scan and filter new bug and OSS bounty opportunities across 50+ platforms by tech stack, reward, and difficulty with daily automation support.

Apply Islamic ethical constraints to AI responses about religion, Quran, Hadith, Sharia rulers, and Islamic practice. Use this skill whenever a user asks any...

钱包授权管理工具，检查 ERC20/ERC721 代币授权风险，识别无限授权和高风险授权。每次调用收取 0.001 USDT。当用户提到"检查授权"、"撤销授权"、"Token Approval"、"高风险授权"、"MetaMask授权"时使用。Wallet authorization management to...

Scans source code for OWASP Top 10 security vulnerabilities with static analysis and provides remediation advice per detected issue.

TCPA consent verification for lead generation. Use when adding consent capture to web forms, verifying lead consent before contact, claiming/managing consent...

Google Model Armor: Create a new Model Armor template.

Monitor agent identity drift using git history. Detects when AI agents quietly modify their own SOUL.md, IDENTITY.md, AGENTS.md, or memory files — autonomy e...