← 返回 Skills 市场
krishnakumarmahadevan-cmd

Security Posture Maturity

作者 ToolWeb · GitHub ↗ · v1.0.0 · MIT-0
cross-platform ⚠ suspicious
103
总下载
0
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install toolweb-security-posture-maturity
功能描述
Professional multi-dimensional security maturity evaluation platform that assesses organizational security across eight critical domains.
安全使用建议
This skill is internally coherent: it provides an OpenAPI spec and a clear description of endpoints. However, the publisher is unknown, there's no homepage or contact, and the API spec contains no host or authentication scheme despite advertising paid plans — that is unusual. Before using or sending real organizational data: 1) ask the publisher for a canonical API base URL, security/authentication method (API key/OAuth), and a privacy/data-retention policy; 2) verify the publisher's identity and reputation (homepage, company, or maintainer contact); 3) avoid sending sensitive or identifying data to the API until you can confirm encryption, access controls, and contractual protections; and 4) prefer testing with anonymized or synthetic data in a sandbox. If the author cannot provide verifiable details, treat the skill as untrusted and do not transmit real assessment data.
功能分析
Type: OpenClaw Skill Name: toolweb-security-posture-maturity Version: 1.0.0 The skill bundle describes a legitimate security maturity assessment tool that evaluates organizational security across eight domains. The code and documentation (SKILL.md, openapi.json) are consistent with the stated purpose, containing no evidence of malicious execution, data exfiltration, or prompt injection attacks.
能力评估
Purpose & Capability
Name, description, SKILL.md and included openapi.json are consistent: they describe an assessment API over eight domains and provide matching endpoints and request/response schemas. However, the skill advertises pricing and tiers but the OpenAPI and SKILL.md include no host, security schemes, or required credentials — that omission is unusual for a paid API and worth questioning.
Instruction Scope
SKILL.md is instruction-only and only describes API endpoints, sample requests/responses, and expected behavior. It does not direct the agent to read local files, environment variables, system paths, or to transmit data to unexpected endpoints outside the described API.
Install Mechanism
No install spec and no code files are provided beyond documentation and OpenAPI; nothing is written to disk or executed during install. This is low-risk from an installation perspective.
Credentials
The skill declares no required environment variables, binaries, or credentials which is proportionate to an instruction-only API description. However, the presence of pricing/tiers and a production-sounding API with no declared auth or host is atypical and could mean the author omitted necessary authentication info or expects the agent/user to supply secrets out-of-band — clarify before sending any sensitive organizational data.
Persistence & Privilege
The skill is not always-enabled (always:false) and is user-invocable. It does not request elevated or persistent privileges and does not modify other skill configurations according to the provided metadata.
如何使用
  1. 确保已安装 OpenClaw(本地或 Docker 部署)
  2. 在对话框中输入安装命令:/install toolweb-security-posture-maturity
  3. 安装完成后,直接呼叫该 Skill 的名称或使用 /toolweb-security-posture-maturity 触发
  4. 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
Initial release of the Security Posture Maturity Assessment API. - Provides comprehensive maturity assessment across eight key security domains. - Returns detailed domain scores, overall maturity level, and improvement recommendations. - Includes endpoints for assessment submission, domain definitions, and maturity level descriptions. - Designed for security audits, compliance preparation, and ongoing security benchmarking. - Tiered pricing plans for a range of organizational needs.
元数据
Slug toolweb-security-posture-maturity
版本 1.0.0
许可证 MIT-0
累计安装 0
当前安装数 0
历史版本数 1
常见问题

Security Posture Maturity 是什么?

Professional multi-dimensional security maturity evaluation platform that assesses organizational security across eight critical domains. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 103 次。

如何安装 Security Posture Maturity?

在 OpenClaw 或 Claude Code 对话框中运行命令「/install toolweb-security-posture-maturity」即可一键安装,无需额外配置。

Security Posture Maturity 是免费的吗?

是的,Security Posture Maturity 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。

Security Posture Maturity 支持哪些平台?

Security Posture Maturity 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。

谁开发了 Security Posture Maturity?

由 ToolWeb(@krishnakumarmahadevan-cmd)开发并维护,当前版本 v1.0.0。

推荐 Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 留言讨论