← 返回 Skills 市场
krishnakumarmahadevan-cmd

HIPAA Gap Analysis

作者 ToolWeb · GitHub ↗ · v1.0.0 · MIT-0
cross-platform ⚠ suspicious
232
总下载
0
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install toolweb-hipaa-gap-analysis
功能描述
Assess HIPAA compliance across all five rule areas, identify 32 control gaps, and generate a prioritized remediation plan with compliance scoring and audit r...
安全使用建议
This skill appears coherent for doing a HIPAA gap analysis, but before using it: (1) Do not paste identifiable patient data — provide only organization-level, de-identified or high-level information (e.g., 'Medium PHI volume', not sample records). (2) Ask the provider where inputs and outputs are stored, how long they are retained, and who can access them. (3) Confirm whether the environment running the agent is HIPAA-compliant (BAA, encrypted storage, access controls) if you plan to include real PHI. (4) Prefer sanitizing inputs and have a qualified privacy/security professional review any remediation plan before implementation. (5) If you need an audit-grade assessment, consider using an internal/paid external assessor with documented handling policies rather than pasting sensitive details into a general-purpose skill.
功能分析
Type: OpenClaw Skill Name: toolweb-hipaa-gap-analysis Version: 1.0.0 The skill acts as a wrapper for an external API (portal.toolweb.in) that performs HIPAA gap analysis. It requires the agent to transmit sensitive organizational data, including security control status, PHI types, and workforce details, to a third-party endpoint. While this behavior is aligned with the stated purpose, the transmission of such high-value compliance information to an external domain constitutes a risky capability. No evidence of malicious intent, such as unauthorized data harvesting or hidden execution logic, was found in SKILL.md or _meta.json.
能力评估
Purpose & Capability
The name and description (HIPAA gap analysis across five rule areas, 32 controls, remediation plan) align with the SKILL.md which defines structured inputs and a scored/output format. The skill requests only organization assessment fields (organization profile, control presence flags) — these are coherent with the stated purpose. No unrelated binaries, env vars, or install steps are requested.
Instruction Scope
SKILL.md is an instruction-only spec that asks the agent to produce a gap report from structured inputs. It does not instruct the agent to read local files, environment variables, or call external endpoints. However, it requires submission of sensitive organizational data (PHI volume/types, control state) and marks every field as required; the document does not describe how input data is handled, whether outputs or inputs are logged, or whether any external transmission occurs — a privacy/data-handling omission worth noting.
Install Mechanism
No install spec or code files are present (instruction-only), so nothing will be downloaded or written to disk by the skill itself. This is the lowest-risk install profile.
Credentials
The skill requests no credentials, config paths, or environment variables (proportionate). That said, it expects potentially sensitive organizational/PHI-related inputs; the README does not justify or limit what PHI may be included and gives no guidance to avoid entering patient-identifiable data.
Persistence & Privilege
always:false and no install or persistent configuration changes are requested. The skill does not request permanent presence or modify other skills' configs. Autonomous invocation is allowed (platform default) but not augmented by extra privileges.
如何使用
  1. 确保已安装 OpenClaw(本地或 Docker 部署)
  2. 在对话框中输入安装命令:/install toolweb-hipaa-gap-analysis
  3. 安装完成后,直接呼叫该 Skill 的名称或使用 /toolweb-hipaa-gap-analysis 触发
  4. 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
- Initial release of HIPAA Gap Analysis skill - Assess HIPAA compliance across all five rule areas with 32 mapped controls - Provides automated gap report: compliance score, deficiency list, prioritized remediation roadmap - Outputs regulatory exposure summary and audit readiness rating - Includes clear usage instructions, parameter details, example output, pricing tiers, and API documentation
元数据
Slug toolweb-hipaa-gap-analysis
版本 1.0.0
许可证 MIT-0
累计安装 0
当前安装数 0
历史版本数 1
常见问题

HIPAA Gap Analysis 是什么?

Assess HIPAA compliance across all five rule areas, identify 32 control gaps, and generate a prioritized remediation plan with compliance scoring and audit r... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 232 次。

如何安装 HIPAA Gap Analysis?

在 OpenClaw 或 Claude Code 对话框中运行命令「/install toolweb-hipaa-gap-analysis」即可一键安装,无需额外配置。

HIPAA Gap Analysis 是免费的吗?

是的,HIPAA Gap Analysis 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。

HIPAA Gap Analysis 支持哪些平台?

HIPAA Gap Analysis 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。

谁开发了 HIPAA Gap Analysis?

由 ToolWeb(@krishnakumarmahadevan-cmd)开发并维护,当前版本 v1.0.0。

推荐 Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191113 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 留言讨论