← 返回 Skills 市场
vahagn-madatyan

Prisma Access Audit

作者 Vahagn Madatyan · GitHub ↗ · v1.0.0 · MIT-0
cross-platform ⚠ suspicious
102
总下载
0
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install prisma-access-audit
功能描述
Palo Alto Prisma Access SASE audit — security policy evaluation for mobile users and remote networks, GlobalProtect Cloud Service configuration review, servi...
安全使用建议
This skill appears to do what it says (read-only audits against Prisma Access), but the packaging has inconsistencies you should clear up before installing or providing credentials. Ask the publisher to: (1) clearly list required credentials and environment variables (OAuth client_id/client_secret vs. Panorama API key vs. Cortex Data Lake token) and provide the exact env var names; (2) confirm minimal required roles (prefer a read-only Auditor/service-account scoped to the TSG rather than admin credentials); (3) explain how any retrieved user/telemetry data (usernames, IPs, client versions) is handled/stored; and (4) provide a test-mode or read-only verification run against a non-production tenant. Until those are answered, avoid supplying high-privilege credentials and prefer a short-lived, least-privilege service account limited to the audit scope.
能力评估
Purpose & Capability
The name, description, and SKILL.md all describe a Prisma Access SASE audit and the runtime instructions only call Prisma/SCM/Insights APIs — this is coherent for the stated purpose. However the registry metadata at the top of the submission lists no required environment variables while the SKILL.md metadata declares a required PRISMA_ACCESS_API_KEY and the procedure describes OAuth client credentials or Panorama API keys; that mismatch (and an additional mention of Cortex Data Lake access in prerequisites) is inconsistent and should be clarified.
Instruction Scope
Instructions are focused on querying Strata Cloud Manager, Prisma Access Insights, and (legacy) Panorama Cloud Services endpoints to enumerate tenants, policies, tunnels, and telemetry. The steps do not instruct reading unrelated local files or sending data to external endpoints outside Palo Alto domains. They will retrieve potentially sensitive tenant/config and connected-user telemetry (usernames, client IPs, GP client versions), which is expected for an audit but is sensitive data that must be protected.
Install Mechanism
This is an instruction-only skill with no install spec and no code files — it does not write files to disk or download external artifacts. That reduces the filesystem/execution risk.
Credentials
The SKILL.md metadata and Procedure reference OAuth client_id/client_secret, Panorama username/password (API key), and access to Cortex Data Lake, but the registry-level requirements list no environment variables. The skill appears to require at least one Prisma credential and possibly additional telemetry credentials, yet those are not consistently declared. Requiring multiple high-privilege secrets (client_secret, service account bound to a TSG, or Panorama admin credentials) without clear, consistent declaration is a proportionality and transparency concern.
Persistence & Privilege
The skill is not always-enabled and is user-invocable only. It does not request persistent installation, does not modify other skills, and does not declare any platform privileges beyond calling the documented Palo Alto APIs.
如何使用
  1. 确保已安装 OpenClaw(本地或 Docker 部署)
  2. 在对话框中输入安装命令:/install prisma-access-audit
  3. 安装完成后,直接呼叫该 Skill 的名称或使用 /prisma-access-audit 触发
  4. 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
Initial release of Palo Alto Prisma Access SASE audit skill. - Provides comprehensive audit of Prisma Access security posture across mobile users and remote networks. - Evaluates GlobalProtect Cloud Service configuration, security policies, threat prevention profiles, and service connection health. - Supports Strata Cloud Manager and Panorama Cloud Services plugin-managed deployments. - Offers checks for policy gaps, profile coverage, tunnel status, and configuration drift. - Requires Prisma Access API credentials for use.
元数据
Slug prisma-access-audit
版本 1.0.0
许可证 MIT-0
累计安装 0
当前安装数 0
历史版本数 1
常见问题

Prisma Access Audit 是什么?

Palo Alto Prisma Access SASE audit — security policy evaluation for mobile users and remote networks, GlobalProtect Cloud Service configuration review, servi... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 102 次。

如何安装 Prisma Access Audit?

在 OpenClaw 或 Claude Code 对话框中运行命令「/install prisma-access-audit」即可一键安装,无需额外配置。

Prisma Access Audit 是免费的吗?

是的,Prisma Access Audit 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。

Prisma Access Audit 支持哪些平台?

Prisma Access Audit 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。

谁开发了 Prisma Access Audit?

由 Vahagn Madatyan(@vahagn-madatyan)开发并维护,当前版本 v1.0.0。

推荐 Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191113 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 留言讨论