← 返回 Skills 市场
mova-compact

Mova Compliance Audit

作者 Sergii Miasoiedov · GitHub ↗ · v1.0.1 · MIT-0
cross-platform ✓ 安全检测通过
173
总下载
0
收藏
0
当前安装
4
版本数
在 OpenClaw 中安装
/install mova-compliance-audit
功能描述
Submit documents for AI-powered compliance audit against GDPR, PCI-DSS, ISO 27001, or SOC 2 via MOVA HITL. Trigger when the user uploads a document and menti...
安全使用建议
This skill appears to do what it claims: submit documents to the MOVA platform for a human-in-the-loop compliance audit. Before installing/using it: 1) Verify and review the openclaw-mova plugin (the skill depends on it); confirm the plugin's provenance, code, and permissions. 2) Be aware that documents and organization metadata will be sent to api.mova-lab.eu (EU-hosted) and to MOVA connectors (OCR, rules engine) — do not upload sensitive or regulated data until you confirm retention, residency, and privacy policies. 3) Confirm how MOVA credentials are provided and stored by the plugin (the skill itself does not declare env vars). 4) Test with non-sensitive sample documents first and ensure your compliance officer is prepared for the mandatory human sign-off flow. If you cannot review the plugin or accept external data sharing, do not enable this skill.
功能分析
Type: OpenClaw Skill Name: mova-compliance-audit Version: 1.0.1 The mova-compliance-audit skill is a legitimate integration for performing regulatory audits (GDPR, PCI-DSS, etc.) via the MOVA platform. It features mandatory human-in-the-loop (HITL) sign-off, transparently discloses data flows to 'api.mova-lab.eu' in its metadata, and includes explicit defensive instructions for the agent to avoid using shell commands or manual HTTP requests. While it includes a tool for registering connectors with authentication headers, this capability is documented for legitimate infrastructure integration and is governed by the skill's structured workflow in SKILL.md.
能力评估
Purpose & Capability
The name/description (MOVA compliance audit) align with the instructions: submit document URL/ID, request framework, run rule checks, present findings, and require human sign-off. The SKILL.md explicitly references calling mova_hitl_start_compliance and sending data to api.mova-lab.eu, which is expected for this capability.
Instruction Scope
The runtime instructions stay within the stated purpose: ingest a document (URL/ID), run OCR/connectors/rules engine via MOVA, display findings, and require human decision. There are no instructions to read unrelated local files, system env vars, or to send data to arbitrary third parties beyond the documented MOVA endpoints.
Install Mechanism
The skill is instruction-only (no install spec) which is low risk, but the metadata requires an external OpenClaw plugin (openclaw-mova). That plugin installation is an out-of-band action not packaged in this skill and may pull code/credentials into your environment — the plugin should be reviewed/trusted before installation.
Credentials
The skill itself declares no environment variables or credentials, which is coherent for an instruction-only wrapper, but it will send document URLs and org metadata to api.mova-lab.eu. In practice the required MOVA credentials/config are likely managed by the external plugin (not declared here). Confirm how the plugin stores/uses credentials and ensure you consent to sending potentially sensitive documents to MOVA.
Persistence & Privilege
The skill does not request permanent/always-on presence, does not modify other skills' configs, and requires a human gate for final decisions. No elevated persistence privileges are requested by the skill itself.
如何使用
  1. 确保已安装 OpenClaw(本地或 Docker 部署)
  2. 在对话框中输入安装命令:/install mova-compliance-audit
  3. 安装完成后,直接呼叫该 Skill 的名称或使用 /mova-compliance-audit 触发
  4. 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.1
Added Contract Skill type label.
v1.2.0
Fix: remove incorrect API key requirement
v1.1.0
Add demo screenshots from live agent run
v1.0.0
Initial release: compliance audit HITL workflow for GDPR, PCI-DSS, ISO 27001, SOC 2
元数据
Slug mova-compliance-audit
版本 1.0.1
许可证 MIT-0
累计安装 0
当前安装数 0
历史版本数 4
常见问题

Mova Compliance Audit 是什么?

Submit documents for AI-powered compliance audit against GDPR, PCI-DSS, ISO 27001, or SOC 2 via MOVA HITL. Trigger when the user uploads a document and menti... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 173 次。

如何安装 Mova Compliance Audit?

在 OpenClaw 或 Claude Code 对话框中运行命令「/install mova-compliance-audit」即可一键安装,无需额外配置。

Mova Compliance Audit 是免费的吗?

是的,Mova Compliance Audit 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。

Mova Compliance Audit 支持哪些平台?

Mova Compliance Audit 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。

谁开发了 Mova Compliance Audit?

由 Sergii Miasoiedov(@mova-compact)开发并维护,当前版本 v1.0.1。

推荐 Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463556 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259610 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200551 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191226 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190235 · by oswalpalash

💬 留言讨论