← Back to Skills Marketplace

prisma-audit

Name: prisma-audit
Author: leesandao

by H@CKMEN · GitHub ↗ · v1.1.0 · MIT-0

cross-platform ✓ Security Clean

116

Downloads

Stars

Active Installs

Versions

Install in OpenClaw

/install prisma-audit

Description

Audit and validate Prisma Access configurations against best practices and security standards. Use when reviewing security policies, checking for misconfigur...

Usage Guidance

This skill appears coherent for auditing Prisma Access configuration, but it will need actual config data to run. Before using it: (1) avoid pasting secrets or private keys—redact API keys, certificates, and passwords from configs; (2) prefer providing a sanitized file path rather than pasting full configs into chat; (3) inspect the upstream repository (homepage provided) if you want more assurance about how the agent will process input; and (4) if you are concerned about exfiltration, run the audit in an environment without outbound network access or use a local/manual review instead.

Capability Analysis

Type: OpenClaw Skill Name: prisma-audit Version: 1.1.0 The skill bundle contains only metadata and instructions (SKILL.md) for an AI agent to perform security audits on Prisma Access configurations. There is no executable code, no network requests, and no instructions that would lead to data exfiltration or unauthorized access.

Capability Assessment

✓ Purpose & Capability

The name/description (Prisma Access configuration auditor) aligns with the SKILL.md: it describes checks for security policy, NAT, decryption, GlobalProtect, object hygiene, and compliance. There are no unrelated required binaries, env vars, or config paths that would be out of scope for a config auditor.

ℹ Instruction Scope

The skill accepts configuration via a file path or pasted JSON and enumerates detailed checks. That scope is appropriate for an auditor. Note: because it allows arbitrary file paths or pasted config, users may inadvertently provide sensitive secrets (API keys, certificates) in the config; the instructions do not specify how sensitive fields will be handled or whether data is transmitted externally.

✓ Install Mechanism

No install spec or code files are present (instruction-only), so nothing is written to disk or downloaded by the skill itself. This is the lowest-risk install footprint.

ℹ Credentials

The skill declares no required environment variables or credentials, which is proportionate. However, auditing Prisma Access configs often involves parsing sensitive artifacts (certificates, secrets, IP pools). The skill does not request credentials but will process any secrets included in user-supplied configs—users should avoid pasting secrets unless necessary.

✓ Persistence & Privilege

always is false and the skill does not request persistent agent-wide privileges. There is no indication it modifies other skills or system configuration.

How to Use

Make sure OpenClaw is installed (local or Docker)
Run the install command in chat: /install prisma-audit
After installation, invoke the skill by name or use /prisma-audit
Provide required inputs per the skill's parameter spec and get structured output

Version History

v1.1.0

## v1.1.0 Version bump. Updated homepage URL. Part of the v1.1.0 release adding migration compatibility matrix to prisma-migrate.

v1.0.1

## v1.0.0 Initial Release / 首次发布 ### English Audit Prisma Access configurations against security best practices. **Audit categories:** - Security Policy: shadow rules, overly permissive rules, missing profiles/logging - NAT Policy: missing security rules, overlapping translations - Decryption Policy: bypassed traffic, expired certificates - GlobalProtect: weak auth, missing HIP checks, permissive split tunnel - Object Hygiene: unused objects, overlapping addresses, empty groups - Compliance: PAN-OS BPA, CIS Benchmark, Zero Trust alignment Outputs scored report (0-100) with CRITICAL/HIGH/MEDIUM/LOW/INFO findings. ### 中文根据安全最佳实践审计 Prisma Access 配置。 **审计类别：** - 安全策略：影子规则、过于宽松的规则、缺失的配置文件/日志 - NAT 策略：缺失安全规则、重叠的转换 - 解密策略：绕过的流量、过期证书 - GlobalProtect：弱认证、缺失 HIP 检查、宽松的分隧道 - 对象卫生：未使用对象、重叠地址、空组 - 合规性：PAN-OS BPA、CIS 基准、零信任对齐输出评分报告（0-100），按严重级别分类发现结果。

v1.0.0

Initial release: audit Prisma Access configurations against best practices

Metadata

Slug prisma-audit

Version 1.1.0

License MIT-0

All-time Installs 0

Active Installs 0

Total Versions 3

Frequently Asked Questions

What is prisma-audit?

Audit and validate Prisma Access configurations against best practices and security standards. Use when reviewing security policies, checking for misconfigur... It is an AI Agent Skill for Claude Code / OpenClaw, with 116 downloads so far.

How do I install prisma-audit?

Run "/install prisma-audit" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is prisma-audit free?

Yes, prisma-audit is completely free, licensed under MIT-0. You can download, install and use it at no cost.

Which platforms does prisma-audit support?

prisma-audit is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created prisma-audit?

It is built and maintained by H@CKMEN (@leesandao); the current version is v1.1.0.

More Skills