← Back to Skills Marketplace
232
Downloads
0
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install toolweb-hipaa-gap-analysis
Description
Assess HIPAA compliance across all five rule areas, identify 32 control gaps, and generate a prioritized remediation plan with compliance scoring and audit r...
Usage Guidance
This skill appears coherent for doing a HIPAA gap analysis, but before using it: (1) Do not paste identifiable patient data — provide only organization-level, de-identified or high-level information (e.g., 'Medium PHI volume', not sample records). (2) Ask the provider where inputs and outputs are stored, how long they are retained, and who can access them. (3) Confirm whether the environment running the agent is HIPAA-compliant (BAA, encrypted storage, access controls) if you plan to include real PHI. (4) Prefer sanitizing inputs and have a qualified privacy/security professional review any remediation plan before implementation. (5) If you need an audit-grade assessment, consider using an internal/paid external assessor with documented handling policies rather than pasting sensitive details into a general-purpose skill.
Capability Analysis
Type: OpenClaw Skill
Name: toolweb-hipaa-gap-analysis
Version: 1.0.0
The skill acts as a wrapper for an external API (portal.toolweb.in) that performs HIPAA gap analysis. It requires the agent to transmit sensitive organizational data, including security control status, PHI types, and workforce details, to a third-party endpoint. While this behavior is aligned with the stated purpose, the transmission of such high-value compliance information to an external domain constitutes a risky capability. No evidence of malicious intent, such as unauthorized data harvesting or hidden execution logic, was found in SKILL.md or _meta.json.
Capability Assessment
Purpose & Capability
The name and description (HIPAA gap analysis across five rule areas, 32 controls, remediation plan) align with the SKILL.md which defines structured inputs and a scored/output format. The skill requests only organization assessment fields (organization profile, control presence flags) — these are coherent with the stated purpose. No unrelated binaries, env vars, or install steps are requested.
Instruction Scope
SKILL.md is an instruction-only spec that asks the agent to produce a gap report from structured inputs. It does not instruct the agent to read local files, environment variables, or call external endpoints. However, it requires submission of sensitive organizational data (PHI volume/types, control state) and marks every field as required; the document does not describe how input data is handled, whether outputs or inputs are logged, or whether any external transmission occurs — a privacy/data-handling omission worth noting.
Install Mechanism
No install spec or code files are present (instruction-only), so nothing will be downloaded or written to disk by the skill itself. This is the lowest-risk install profile.
Credentials
The skill requests no credentials, config paths, or environment variables (proportionate). That said, it expects potentially sensitive organizational/PHI-related inputs; the README does not justify or limit what PHI may be included and gives no guidance to avoid entering patient-identifiable data.
Persistence & Privilege
always:false and no install or persistent configuration changes are requested. The skill does not request permanent presence or modify other skills' configs. Autonomous invocation is allowed (platform default) but not augmented by extra privileges.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install toolweb-hipaa-gap-analysis - After installation, invoke the skill by name or use
/toolweb-hipaa-gap-analysis - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
- Initial release of HIPAA Gap Analysis skill
- Assess HIPAA compliance across all five rule areas with 32 mapped controls
- Provides automated gap report: compliance score, deficiency list, prioritized remediation roadmap
- Outputs regulatory exposure summary and audit readiness rating
- Includes clear usage instructions, parameter details, example output, pricing tiers, and API documentation
Metadata
Frequently Asked Questions
What is HIPAA Gap Analysis?
Assess HIPAA compliance across all five rule areas, identify 32 control gaps, and generate a prioritized remediation plan with compliance scoring and audit r... It is an AI Agent Skill for Claude Code / OpenClaw, with 232 downloads so far.
How do I install HIPAA Gap Analysis?
Run "/install toolweb-hipaa-gap-analysis" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is HIPAA Gap Analysis free?
Yes, HIPAA Gap Analysis is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does HIPAA Gap Analysis support?
HIPAA Gap Analysis is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created HIPAA Gap Analysis?
It is built and maintained by ToolWeb (@krishnakumarmahadevan-cmd); the current version is v1.0.0.
More Skills