← Back to Skills Marketplace
krishnakumarmahadevan-cmd

OT Security Posture Scorecard

by ToolWeb · GitHub ↗ · v1.3.2 · MIT-0
linuxdarwinwin32 ✓ Security Clean
347
Downloads
0
Stars
2
Active Installs
9
Versions
Install in OpenClaw
/install ot-security-posture-scorecard
Description
Assess OT/ICS/SCADA security posture and generate risk scorecards with remediation guidance. Use when evaluating operational technology security, industrial...
Usage Guidance
This skill appears coherent with its stated purpose, but before installing: (1) verify you trust the vendor (portal.toolweb.in) and their privacy/data-handling practices, since the skill will send assessment data to that endpoint; (2) only provide a dedicated API key with limited scope if possible; (3) be aware the included test script makes live network calls (to port 8443) and optionally uses python3 for pretty-printing; and (4) if you need higher assurance, contact the vendor for provenance (the repository lists a different support email in README) and test the skill in a controlled environment before using with real production data.
Capability Analysis
Type: OpenClaw Skill Name: ot-security-posture-scorecard Version: 1.3.2 The skill is a legitimate security assessment tool designed to evaluate OT/ICS/SCADA environments by interfacing with a remote API (portal.toolweb.in). Its behavior is entirely consistent with its stated purpose of generating security scorecards based on user-provided organizational data and NIST CSF/IEC 62443 frameworks. While the 'scripts/test-api.sh' file contains a minor security vulnerability (using the 'curl -k' flag to bypass SSL verification), the primary execution instructions in 'SKILL.md' are properly configured, and no evidence of malicious intent, data exfiltration, or unauthorized access was found.
Capability Assessment
Purpose & Capability
Name, description, required binary (curl), and the single required environment variable (TOOLWEB_API_KEY) match the declared purpose of calling an external OT assessment API. The included scripts and examples only exercise that API.
Instruction Scope
SKILL.md instructs the agent to gather OT/CSF input and POST it to https://portal.toolweb.in:8443/security/itotassessor using the TOOLWEB_API_KEY — this is in-scope. Minor notes: the test script formats JSON output with python3 if available (python3 is not declared as a required binary). No instructions read local files or other environment variables.
Install Mechanism
No install spec (instruction-only skill) and no downloads or extracted archives — lowest-risk install posture. Provided files are documentation and a simple test script.
Credentials
Only one credential is required (TOOLWEB_API_KEY) and it is the primary credential used to authorize requests to the stated external API. No unrelated secrets or system credentials are requested.
Persistence & Privilege
always:false and normal user-invocable/autonomous invocation defaults. The skill does not request persistent system privileges or attempt to modify other skills or system config.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install ot-security-posture-scorecard
  3. After installation, invoke the skill by name or use /ot-security-posture-scorecard
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.3.2
- Updated pricing section: new subscription tiers (Free trial, Developer, Professional, Enterprise) with daily and monthly call limits/prices in USD. - Removed details about previous INR-based pricing and international payment flow. - Minor clarifications and formatting adjustments in the About and Pricing sections. - No changes to API usage, workflow, or core functionality.
v1.3.1
- Documentation reformatted in SKILL.md for improved clarity and structure. - No changes to skill logic, features, or API; functional behavior remains the same. - Content is unchanged aside from formatting and minor readability adjustments.
v1.3.0
- No functional or feature changes; documentation-only update. - SKILL.md was updated with minor formatting tweaks and a corrected section heading. - Core workflow, usage, API, and error handling remain unchanged. - No changes to code, functionality, prompts, or integration logic.
v1.2.0
No functional changes. Documentation (SKILL.md) updated for accuracy and clarity. - Updated "About" section with new API count and additional platform information. - Corrected and clarified several minor details throughout the documentation. - No changes to features, API, or workflow logic.
v1.1.0
- No user-facing changes in this release; documentation (SKILL.md) was restored to its previous version. - Functionality, workflow, and API integration remain unchanged.
v1.0.3
Updated display name
v1.0.2
Added international payment info for USD/EUR/GBP users via PayPal at checkout
v1.0.1
Added international payment info for USD/EUR/GBP users via PayPal at checkout
v1.0.0
Initial release: Assess OT/ICS/SCADA security posture and generate risk scorecards with remediation guidance. - Provides risk ratings, gap analysis, and prioritized remediation steps aligned to IEC 62443 and NIST CSF. - Collects user inputs on organization, sector, environment size, integration level, and maturity scores. - Returns scorecard with overall score, risk level, executive summary, top 5 risks, and remediation roadmap. - API access requires a TOOLWEB_API_KEY and curl. - Includes clear error handling and a structured output format.
Metadata
Slug ot-security-posture-scorecard
Version 1.3.2
License MIT-0
All-time Installs 2
Active Installs 2
Total Versions 9
Frequently Asked Questions

What is OT Security Posture Scorecard?

Assess OT/ICS/SCADA security posture and generate risk scorecards with remediation guidance. Use when evaluating operational technology security, industrial... It is an AI Agent Skill for Claude Code / OpenClaw, with 347 downloads so far.

How do I install OT Security Posture Scorecard?

Run "/install ot-security-posture-scorecard" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is OT Security Posture Scorecard free?

Yes, OT Security Posture Scorecard is completely free, licensed under MIT-0. You can download, install and use it at no cost.

Which platforms does OT Security Posture Scorecard support?

OT Security Posture Scorecard is cross-platform and runs anywhere OpenClaw / Claude Code is available (linux, darwin, win32).

Who created OT Security Posture Scorecard?

It is built and maintained by ToolWeb (@krishnakumarmahadevan-cmd); the current version is v1.3.2.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 Comments