← Back to Skills Marketplace
103
Downloads
0
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install toolweb-security-posture-maturity
Description
Professional multi-dimensional security maturity evaluation platform that assesses organizational security across eight critical domains.
Usage Guidance
This skill is internally coherent: it provides an OpenAPI spec and a clear description of endpoints. However, the publisher is unknown, there's no homepage or contact, and the API spec contains no host or authentication scheme despite advertising paid plans — that is unusual. Before using or sending real organizational data: 1) ask the publisher for a canonical API base URL, security/authentication method (API key/OAuth), and a privacy/data-retention policy; 2) verify the publisher's identity and reputation (homepage, company, or maintainer contact); 3) avoid sending sensitive or identifying data to the API until you can confirm encryption, access controls, and contractual protections; and 4) prefer testing with anonymized or synthetic data in a sandbox. If the author cannot provide verifiable details, treat the skill as untrusted and do not transmit real assessment data.
Capability Analysis
Type: OpenClaw Skill
Name: toolweb-security-posture-maturity
Version: 1.0.0
The skill bundle describes a legitimate security maturity assessment tool that evaluates organizational security across eight domains. The code and documentation (SKILL.md, openapi.json) are consistent with the stated purpose, containing no evidence of malicious execution, data exfiltration, or prompt injection attacks.
Capability Assessment
Purpose & Capability
Name, description, SKILL.md and included openapi.json are consistent: they describe an assessment API over eight domains and provide matching endpoints and request/response schemas. However, the skill advertises pricing and tiers but the OpenAPI and SKILL.md include no host, security schemes, or required credentials — that omission is unusual for a paid API and worth questioning.
Instruction Scope
SKILL.md is instruction-only and only describes API endpoints, sample requests/responses, and expected behavior. It does not direct the agent to read local files, environment variables, system paths, or to transmit data to unexpected endpoints outside the described API.
Install Mechanism
No install spec and no code files are provided beyond documentation and OpenAPI; nothing is written to disk or executed during install. This is low-risk from an installation perspective.
Credentials
The skill declares no required environment variables, binaries, or credentials which is proportionate to an instruction-only API description. However, the presence of pricing/tiers and a production-sounding API with no declared auth or host is atypical and could mean the author omitted necessary authentication info or expects the agent/user to supply secrets out-of-band — clarify before sending any sensitive organizational data.
Persistence & Privilege
The skill is not always-enabled (always:false) and is user-invocable. It does not request elevated or persistent privileges and does not modify other skill configurations according to the provided metadata.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install toolweb-security-posture-maturity - After installation, invoke the skill by name or use
/toolweb-security-posture-maturity - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
Initial release of the Security Posture Maturity Assessment API.
- Provides comprehensive maturity assessment across eight key security domains.
- Returns detailed domain scores, overall maturity level, and improvement recommendations.
- Includes endpoints for assessment submission, domain definitions, and maturity level descriptions.
- Designed for security audits, compliance preparation, and ongoing security benchmarking.
- Tiered pricing plans for a range of organizational needs.
Metadata
Frequently Asked Questions
What is Security Posture Maturity?
Professional multi-dimensional security maturity evaluation platform that assesses organizational security across eight critical domains. It is an AI Agent Skill for Claude Code / OpenClaw, with 103 downloads so far.
How do I install Security Posture Maturity?
Run "/install toolweb-security-posture-maturity" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Security Posture Maturity free?
Yes, Security Posture Maturity is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does Security Posture Maturity support?
Security Posture Maturity is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Security Posture Maturity?
It is built and maintained by ToolWeb (@krishnakumarmahadevan-cmd); the current version is v1.0.0.
More Skills