← Back to Skills Marketplace
johnsmithfan

AI Company Audit (EN)

by JohnSmithfan · GitHub ↗ · v1.0.0-en2 · MIT-0
cross-platform ✓ Security Clean
121
Downloads
0
Stars
0
Active Installs
3
Versions
Install in OpenClaw
/install ai-company-audit
Description
跨Agentaudit日志standard。7类日志(决策/操作/错误/security/性能/访问/data)+ compliance检查点 + audittrackstandard,适配fully AI companygovernframework。
README (SKILL.md)

\r \r

Audit Logging Standard — audit日志standard\r

\r

7类audit日志\r

\r | Log Type | Description | Retention |\r |----------|-------------|----------|\r | Decision | strategy/战术决策record | 2 years |\r | Action | Agent execute的操作 | 90 days |\r | Error | 系统异常和错误 | 90 days |\r | Security | authenticate/authorize/security incident | 2 years |\r | Performance | latency/吞吐量/KPI | 30 days |\r | Access | data访问record | 2 years |\r | Data | data变更历史 | 7 years |\r \r

Log Entry Schema\r

\r

log_entry:\r
  timestamp: "ISO 8601 format (YYYY-MM-DDTHH:MM:SS.SSSZ)"\r
  agent_id: "e.g., CFO-001, CEO-001"\r
  log_type: "decision|action|error|security|performance|access|data"\r
  action: "string (what happened)"\r
  target: "string (affected resource/endpoint)"\r
  result: "success|failure|partial"\r
  duration_ms: 0\r
  metadata:\r
    task_id: "TASK-001"\r
    confidence: 0.95\r
    [敏感]: "redacted"\r
  trace_id: "uuid (for cross-agent correlation)"\r
```\r
\r
## Compliance Checkpoints\r
\r
| Checkpoint | Standard | Enforcement |\r
|-----------|---------|-------------|\r
| P0 SLA 达成 | 95% P0 event在 SLA 内完成 | CQO monitor |\r
| 敏感data标注 | 所有 PII 字段含 `[敏感]` 标注 | CISO audit |\r
| 跨 Agent audittrack | trace_id 贯穿完整调用链 | CTO 技术实现 |\r
| audit日志不可篡改 | append-only + hash chain | CTO 技术实现 |\r
| audit日志保留期 | 详见上表(7类)| CTO storestrategy |\r
\r
## P0 Incident Compliance\r
\r
| P0 standard | respond要求 | audit要求 |\r
|---------|---------|---------|\r
| respond时间 | 15 分钟内初始respond | 时间戳record |\r
| CEO 通报 | 立即通报 | 决策日志 |\r
| 根因analyze | 48 小时内完成 | analyzereport存档 |\r
| improve项 | 7 天内入 backlog | trackrecord |\r
\r
## Audit Log Storage Policy\r
\r
```yaml\r
storage_policy:\r
  format: "structured JSON (CloudWatch/Elasticsearch/Splunk compatible)"\r
  encryption: "AES-256-GCM at rest"\r
  replication: "3 copies across regions"\r
  access_control: "CQO + CISO read-only; CTO write-only"\r
  retention:\r
    decision: "2 years"\r
    security: "2 years"\r
    access: "2 years"\r
    performance: "30 days"\r
    action: "90 days"\r
    error: "90 days"\r
    data: "7 years"\r
```\r
\r
## Natural Language Commands\r
\r
```\r
"Audit all decisions this week" → Decision logs filtered by date range\r
"Check compliance for P0 SLAs" → P0 compliance report\r
"Review access logs for sensitive data" → Access log audit\r
"Export audit trail for INC-001" → Trace by trace_id\r
```\r
Usage Guidance
This skill is a documentation/specification for audit logging and appears internally consistent. It will not perform actions or access your environment by itself. Before relying on it operationally: 1) confirm whether you need a separate implementation/connector (this skill is not an implementation); 2) review the declared dependent skills (ai-company-hq, ai-company-registry, ai-company-conflict) because those may implement runtime behavior or require credentials; 3) if you implement the storage/enforcement recommendations, ensure you provide and secure the necessary cloud credentials and concretely implement append-only, encryption, and access controls; and 4) validate retention and PII-handling rules against your legal/regulatory requirements.
Capability Analysis
Type: OpenClaw Skill Name: ai-company-audit Version: 1.0.0-en2 The skill bundle defines a standardized auditing and logging framework for an AI-driven organization. It contains no executable code, scripts, or requested permissions (files, network, and commands are all empty), focusing entirely on defining log schemas, compliance checkpoints, and storage policies in SKILL.md.
Capability Assessment
Purpose & Capability
The skill is presented as a cross-agent audit logging standard and only contains documentation/schema and NL command mappings. It references integration targets (CloudWatch/Elasticsearch/Splunk), encryption, replication, and enforcement roles, but does not request credentials or binaries — which is appropriate for a standards/specification artifact. If you expected a connector/implementation, that is not present.
Instruction Scope
SKILL.md stays within the scope of a logging/compliance standard: it defines log types, a schema, retention policies, compliance checkpoints, and example NL commands. It does not instruct the agent to read local files, environment variables, or transmit data to external endpoints. A minor note: enforcement mechanisms (append-only hash chain, encryption, replication, access-control) are described at a policy level but no concrete implementation steps are provided.
Install Mechanism
No install spec, no code, and no downloads — lowest-risk instruction-only skill.
Credentials
The skill requires no environment variables, credentials, or config paths. It references cloud logging systems conceptually; this is reasonable for a spec. If you later integrate this standard with real storage backends, those connectors will need appropriate credentials (not included here).
Persistence & Privilege
always:false and default invocation settings; the skill does not request persistent/system-level privileges or to modify other skills' configurations.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install ai-company-audit
  3. After installation, invoke the skill by name or use /ai-company-audit
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0-en2
Full body English translation
v1.0.0-en
English version
v1.0.0
Initial release: Decision logging and compliance audit trail
Metadata
Slug ai-company-audit
Version 1.0.0-en2
License MIT-0
All-time Installs 1
Active Installs 0
Total Versions 3
Frequently Asked Questions

What is AI Company Audit (EN)?

跨Agentaudit日志standard。7类日志(决策/操作/错误/security/性能/访问/data)+ compliance检查点 + audittrackstandard,适配fully AI companygovernframework。 It is an AI Agent Skill for Claude Code / OpenClaw, with 121 downloads so far.

How do I install AI Company Audit (EN)?

Run "/install ai-company-audit" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is AI Company Audit (EN) free?

Yes, AI Company Audit (EN) is completely free, licensed under MIT-0. You can download, install and use it at no cost.

Which platforms does AI Company Audit (EN) support?

AI Company Audit (EN) is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created AI Company Audit (EN)?

It is built and maintained by JohnSmithfan (@johnsmithfan); the current version is v1.0.0-en2.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463815 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259802 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200680 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191345 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190333 · by oswalpalash

💬 Comments