← Back to Skills Marketplace
mededdahby

audit system

by Mededdahby · GitHub ↗ · v1.0.0 · MIT-0
cross-platform ✓ Security Clean
218
Downloads
1
Stars
1
Active Installs
1
Versions
Install in OpenClaw
/install audit-system
Description
Perform structured audits on code, workflows, prompts, and products. Use when: (1) Something is not working as expected, (2) User asks for review or feedback...
README (SKILL.md)

\r \r

Audit System Skill\r

\r Perform structured audits and generate actionable reports with clear severity, evidence, and fixes.\r \r This is an instruction-only skill.\r It does not perform external verification, blockchain auditing, or legal certification.\r \r ---\r \r

Quick Reference\r

\r | Situation | Action |\r |----------|--------|\r | Code not working | Run Code Audit |\r | Workflow failing | Run Workflow Audit |\r | UX feels bad | Run Product Audit |\r | Prompt/AI unstable | Run Prompt Audit |\r | Before deploy | Run Full Audit |\r | Repeated bugs | Focus on root-cause analysis |\r \r ---\r \r

Audit Types\r

\r

1. Code Audit\r

Check:\r

  • logic errors\r
  • missing validation\r
  • security risks\r
  • bad patterns\r
  • performance issues\r \r ---\r \r

2. Workflow Audit\r

Check:\r

  • broken steps\r
  • missing retries\r
  • failure points\r
  • unnecessary complexity\r
  • automation gaps\r \r ---\r \r

3. Product Audit\r

Check:\r

  • onboarding friction\r
  • unclear UX\r
  • conversion blockers\r
  • trust issues\r
  • missing features\r \r ---\r \r

4. Prompt / Agent Audit\r

Check:\r

  • unclear instructions\r
  • conflicting rules\r
  • missing constraints\r
  • unstable outputs\r
  • over-autonomy risks\r \r ---\r \r

Audit Process\r

\r

Step 1 — Define Scope\r

Identify:\r

  • what is being audited\r
  • expected behavior\r
  • actual behavior\r
  • available data\r \r ---\r \r

Step 2 — Inspect\r

Analyze inputs:\r

  • code\r
  • prompts\r
  • configs\r
  • logs\r
  • workflows\r \r Look for:\r
  • inconsistencies\r
  • missing logic\r
  • unclear flow\r
  • hidden risks\r \r ---\r \r

Step 3 — Detect Issues\r

\r For each issue:\r

  • describe clearly\r
  • link to evidence\r
  • explain impact\r \r ---\r \r

Step 4 — Classify Severity\r

\r

  • Critical → breaks system / risk of loss\r
  • High → likely failure\r
  • Medium → important weakness\r
  • Low → improvement\r \r ---\r \r

Step 5 — Recommend Fixes\r

\r For each issue:\r

  • what to fix\r
  • why it matters\r
  • exact fix\r
  • quick workaround\r \r ---\r \r

Step 6 — Prioritize\r

\r Always output:\r

  • top 3 issues\r
  • quick wins\r
  • long-term fixes\r \r ---\r \r

Output Format\r

\r

Audit Report\r

\r

Scope\r

  • Target:\r
  • Type:\r
  • Evidence:\r
  • Limitations:\r \r

Findings\r

\r

[Severity] Title\r

  • Area:\r
  • Problem:\r
  • Evidence:\r
  • Impact:\r
  • Fix:\r \r

Priority Actions\r

  1. ...\r
  2. ...\r
  3. ...\r \r

Quick Wins\r

  • ...\r
  • ...\r \r

Long-Term Improvements\r

  • ...\r \r

Open Questions\r

  • ...\r \r ---\r \r

Behavior Rules\r

\r

  • Be precise, not vague\r
  • Do not invent missing data\r
  • Do not exaggerate severity\r
  • Do not claim certification\r
  • Focus on actionable fixes\r \r ---\r \r

When NOT to use this skill\r

\r Do NOT use for:\r

  • legal certification\r
  • financial compliance guarantees\r
  • blockchain verification\r
  • cryptographic proof generation\r \r Only analyze what is provided.\r \r ---\r \r

Upgrade Path (Advanced)\r

\r If repeated issues appear:\r

  • suggest system redesign\r
  • suggest automation improvements\r
  • suggest monitoring/logging additions
Usage Guidance
This is an instruction-only audit template and appears internally consistent. Before using it: (1) Do not paste sensitive credentials or personal data into audits — the skill will analyze whatever you provide. (2) Treat the output as advisory: verify suggested fixes (especially security or production changes) before applying them. (3) If you need the agent to analyze logs or systems, provide only the minimal, redacted excerpts required. (4) The skill explicitly excludes legal/financial/blockchain certification — don’t rely on it for compliance or formal audits.
Capability Analysis
Type: OpenClaw Skill Name: audit-system Version: 1.0.0 The 'audit-system' skill is a purely instructional bundle designed to guide an AI agent through structured auditing processes for code, workflows, and products. It contains no executable code, scripts, or network-enabled components. The instructions in SKILL.md are focused on reporting and analysis logic, and there is no evidence of prompt injection, data exfiltration, or malicious intent.
Capability Assessment
Purpose & Capability
Name, description, and SKILL.md align: the skill is a general audit template that instructs the agent how to review code, prompts, workflows, and products. It does not request unrelated capabilities, binaries, or credentials.
Instruction Scope
Instructions are scoped to analysing provided artifacts (code, prompts, configs, logs, workflows) and explicitly state 'Only analyze what is provided.' There are no directives to access system files, environment variables, or external endpoints.
Install Mechanism
No install spec and no code files — this is instruction-only, so nothing is written to disk or fetched at install time.
Credentials
The skill declares no required environment variables, credentials, or config paths. Nothing in the instructions attempts to access secrets or unrelated services.
Persistence & Privilege
always:false and default invocation settings; the skill does not request persistent presence or modify agent/system configuration.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install audit-system
  3. After installation, invoke the skill by name or use /audit-system
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
Initial release of audit-system skill. - Enables structured audits for code, workflows, prompts, and products. - Provides clear audit process: define scope, inspect, detect issues, classify severity, recommend fixes, and prioritize. - Outlines different audit types with specific guidance for each. - Standardized output format for actionable reports. - Includes clear behavior rules and limitations for safe, focused usage.
Metadata
Slug audit-system
Version 1.0.0
License MIT-0
All-time Installs 1
Active Installs 1
Total Versions 1
Frequently Asked Questions

What is audit system?

Perform structured audits on code, workflows, prompts, and products. Use when: (1) Something is not working as expected, (2) User asks for review or feedback... It is an AI Agent Skill for Claude Code / OpenClaw, with 218 downloads so far.

How do I install audit system?

Run "/install audit-system" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is audit system free?

Yes, audit system is completely free, licensed under MIT-0. You can download, install and use it at no cost.

Which platforms does audit system support?

audit system is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created audit system?

It is built and maintained by Mededdahby (@mededdahby); the current version is v1.0.0.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 Comments