← Back to Skills Marketplace
166
Downloads
0
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install ot-security-assessment
Description
Assess OT/ICS security posture across 30 controls in 6 principles — Business Driven, Risk Based, Enterprise Wide, Methodical, OT Security Focused, and OT Sec...
Usage Guidance
This skill is coherent but sends assessment data to https://portal.toolweb.in. Before installing or using it: (1) verify the portal and vendor reputation and read their privacy and data retention policies; (2) avoid sending highly sensitive production credentials or details — treat the controls data as potentially visible to the service operator; (3) review pricing/billing limits so you understand call costs; (4) create and use an account/API key with least privilege and rotate it if compromised; (5) if you need offline or internal-only assessments, do not rely on this skill since SKILL.md requires external API calls; (6) test with non-sensitive sample data first to confirm behavior. If you want, I can suggest checklist items to vet portal.toolweb.in or draft a minimal example controls payload you can use for a safe test call.
Capability Analysis
Type: OpenClaw Skill
Name: ot-security-assessment
Version: 1.0.0
The skill functions as a legitimate interface for an OT security assessment service provided by ToolWeb.in. It collects user-provided security control statuses and transmits them via `curl` to a specific API endpoint (`portal.toolweb.in`) for processing. While the instructions in `SKILL.md` strictly mandate the use of the external API and prohibit the agent from using its own knowledge, this behavior is consistent with the tool's stated purpose as a commercial 'Agent-as-a-Service' wrapper and does not show evidence of malicious intent, data exfiltration of sensitive local files, or unauthorized command execution.
Capability Assessment
Purpose & Capability
Name and description match the declared behavior: the skill is an API-backed OT/ICS assessment. The only required env var (TOOLWEB_API_KEY) and required binary (curl) are proportionate and expected for a remote assessment service.
Instruction Scope
The SKILL.md explicitly requires always calling the external ToolWeb API and forbids answering from local knowledge. This is coherent with a proprietary scoring service, but it means any user-provided OT/ICS details (including potentially sensitive infrastructure information) will be transmitted to the remote API. Users should be aware of data sensitivity and the portal's privacy/billing policies.
Install Mechanism
Instruction-only skill with no install spec or downloaded artifacts. No files are written or binaries installed by the skill itself — lowest-risk install posture.
Credentials
Only one required secret (TOOLWEB_API_KEY) is declared and used as the primary credential — proportional for a hosted API service. No unrelated credentials or config paths are requested.
Persistence & Privilege
The skill is not marked always:true and does not request system-wide persistence or modify other skills. Agent autonomous invocation is allowed (default) but not excessive on its own.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install ot-security-assessment - After installation, invoke the skill by name or use
/ot-security-assessment - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
Initial release — Industrial (OT/ICS) security assessment skill.
- Assess OT/ICS security posture across 30 controls in 6 key principles.
- Guides users through structured evaluation questions tied to each control.
- Calls ToolWeb API to return expert OT security compliance scores and prioritized remediation guidance.
- Requires TOOLWEB_API_KEY and curl; supports Linux, Mac, and Windows.
- Outputs compliance percentage, risk level, gaps, and detailed findings by principle.
Metadata
Frequently Asked Questions
What is OT Security Assessment?
Assess OT/ICS security posture across 30 controls in 6 principles — Business Driven, Risk Based, Enterprise Wide, Methodical, OT Security Focused, and OT Sec... It is an AI Agent Skill for Claude Code / OpenClaw, with 166 downloads so far.
How do I install OT Security Assessment?
Run "/install ot-security-assessment" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is OT Security Assessment free?
Yes, OT Security Assessment is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does OT Security Assessment support?
OT Security Assessment is cross-platform and runs anywhere OpenClaw / Claude Code is available (linux, darwin, win32).
Who created OT Security Assessment?
It is built and maintained by ToolWeb (@krishnakumarmahadevan-cmd); the current version is v1.0.0.
More Skills