← 返回 Skills 市场
krishnakumarmahadevan-cmd

CISO Daily Security Pulse

作者 ToolWeb · GitHub ↗ · v1.0.0 · MIT-0
cross-platform ⚠ suspicious
92
总下载
0
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install toolweb-ciso-daily-security-pulse
功能描述
Comprehensive daily security posture assessment tool that provides CISOs with actionable security insights and metrics.
安全使用建议
This skill appears to wrap an external CISO assessment API (toolweb.in) and includes example payloads that contain sensitive security telemetry and user identifiers. Before installing or invoking it: 1) Verify vendor identity and hosting (toolweb.in) and confirm the API's privacy, retention, and data-handling policies. 2) Confirm whether the API requires authentication; if it does, ask why the skill doesn't declare required credentials. 3) Never send real production telemetry, credentials, or PII in initial tests — use synthetic/non-sensitive data. 4) If you need to send organizational security data, prefer skills that document encryption, access controls, and a trusted provenance (homepage, publisher contact, or well-known registry). If you cannot verify the service and its security/privacy practices, avoid using the skill for real data.
功能分析
Type: OpenClaw Skill Name: toolweb-ciso-daily-security-pulse Version: 1.0.0 The skill bundle defines a legitimate interface for a security assessment tool called 'CISO Daily Security Pulse'. It provides endpoints for health checks and security posture assessments based on user-provided metrics (vulnerability counts, compliance gaps, etc.). There is no evidence of malicious intent, data exfiltration, or prompt injection; the tool functions as a standard API wrapper for the toolweb.in service.
能力标签
cryptocan-make-purchases
能力评估
Purpose & Capability
Name, description, SKILL.md and openapi.json describe a CISO security-assessment API (GET health, POST assess). There are no unrelated binaries, env vars, or install steps — the claimed purpose matches the provided API surface.
Instruction Scope
The SKILL.md exposes endpoints and example payloads that would cause an agent to send organizational security telemetry (vulnerabilities, incident counts, user IDs) to external endpoints. The instructions do not explain authentication, data handling, retention, or consent, so using the skill could result in sensitive data being transmitted to an external service without clear safeguards.
Install Mechanism
Instruction-only skill with no install spec and no code files to execute; nothing is written to disk by an installer. This is the lowest install risk.
Credentials
The skill declares no required environment variables or credentials. That can be reasonable for a public unauthenticated service, but most APIs that process sensitive telemetry require API keys / auth — the lack of declared credentials is ambiguous and increases risk because the SKILL.md references external API endpoints but provides no auth guidance.
Persistence & Privilege
always is false and the skill is user-invocable. It does not request persistent system-wide privileges or modify other skills. Autonomous invocation is allowed (platform default) but not combined here with other high-risk privileges.
如何使用
  1. 确保已安装 OpenClaw(本地或 Docker 部署)
  2. 在对话框中输入安装命令:/install toolweb-ciso-daily-security-pulse
  3. 安装完成后,直接呼叫该 Skill 的名称或使用 /toolweb-ciso-daily-security-pulse 触发
  4. 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
Initial release of CISO Daily Security Pulse. - Provides daily security posture assessments for CISOs with actionable insights and metrics. - Main API endpoints: health check and assessment processing with detailed recommendations and metrics. - Sample request and response payloads for easier integration. - Flexible pricing plans from Free to Enterprise tiers. - Documentation includes usage, parameters, response schema, and support links.
元数据
Slug toolweb-ciso-daily-security-pulse
版本 1.0.0
许可证 MIT-0
累计安装 0
当前安装数 0
历史版本数 1
常见问题

CISO Daily Security Pulse 是什么?

Comprehensive daily security posture assessment tool that provides CISOs with actionable security insights and metrics. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 92 次。

如何安装 CISO Daily Security Pulse?

在 OpenClaw 或 Claude Code 对话框中运行命令「/install toolweb-ciso-daily-security-pulse」即可一键安装,无需额外配置。

CISO Daily Security Pulse 是免费的吗?

是的,CISO Daily Security Pulse 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。

CISO Daily Security Pulse 支持哪些平台?

CISO Daily Security Pulse 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。

谁开发了 CISO Daily Security Pulse?

由 ToolWeb(@krishnakumarmahadevan-cmd)开发并维护,当前版本 v1.0.0。

推荐 Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 留言讨论