← Back to Skills Marketplace
wwumit

PIPL-Compliance(PIPL合规工具)

by Wei Wu · GitHub ↗ · v1.1.8 · MIT-0
cross-platform ✓ Security Clean
240
Downloads
1
Stars
0
Active Installs
16
Versions
Install in OpenClaw
/install pipl-compliance
Description
中国个人信息保护法(PIPL)合规检查、风险评估和文档生成工具。为企业提供全面的PIPL合规解决方案。Use when: 需要进行PIPL合规自查、个人信息处理风险评估、合规文档生成、企业合规管理。触发关键词:PIPL、个人信息保护法、合规检查、风险评估、隐私合规、数据保护
Usage Guidance
Key things to consider before installing: 1) This package contains many Python scripts that will run locally — review scripts (especially security_check_enhanced.py and any scripts that were truncated in the manifest) to confirm there are no unexpected network calls or data uploads. 2) Install and run the tool in an isolated virtual environment (python -m venv ...) and run the included security check script first. 3) Do not run on production or with real sensitive datasets until you've audited the code and confirmed behavior. 4) If you will use the tool for legal compliance decisions, treat its output as a draft/aid and consult a qualified lawyer. 5) If you want extra assurance, search the codebase for network libraries or URL patterns (requests/urllib/http/socket and http:// or https://) before trusting it with sensitive data.
Capability Analysis
Type: OpenClaw Skill Name: pipl-compliance Version: 1.1.8 The PIPL Compliance skill bundle is a highly professional and well-documented toolset for managing Chinese data protection law compliance. The code logic is entirely local, focusing on data validation, risk scoring, and Markdown document generation using templates (scripts/document-generator.py and scripts/risk-assessment.py). It includes proactive security features such as built-in security scanners (scripts/security_check_enhanced.py) designed to verify the absence of network calls or hardcoded secrets. No evidence of data exfiltration, malicious persistence, or prompt injection was found; the use of subprocess in scripts/quick-start.py is limited to installing legitimate dependencies (pandas, jinja2) as declared in requirements.txt.
Capability Assessment
Purpose & Capability
Name, description, scripts, and documentation all describe a local PIPL compliance toolset (checks, risk scoring, document templates). The required resources (Python scripts, pandas/jinja2) are consistent with these capabilities. The package does not ask for unrelated credentials or system-level access.
Instruction Scope
SKILL.md instructs the user/agent to install requirements and run the included Python scripts (including via subprocess). Those runtime instructions operate on local files and sample/company data, which is appropriate for the stated purpose. The docs emphasize 'pure local' operation and include a security-check script to verify no network I/O. Note: SKILL.md also suggests programmatic imports and subprocess usage — both are normal here but mean the agent will execute code on the host, so run in an isolated environment if you want to limit exposure of real data.
Install Mechanism
There is no formal install spec in the registry, but the README/SKILL.md instructs `pip install -r requirements.txt`. The listed dependencies (pandas, jinja2) are proportionate for report generation. No remote downloads or unusual installers are referenced in the provided files. Because code is included in the package (many scripts), installing and running will write/read local files — review scripts before running.
Credentials
The skill does not declare or require any environment variables, credentials, or config paths. The declared dependencies (pandas/jinja2) match the code's stated needs. No external API keys or unrelated secrets are requested in documentation or package metadata.
Persistence & Privilege
The skill does not request 'always' privilege and uses default autonomous invocation settings. It does not attempt to modify other skills or system-wide agent settings in the files reviewed. Its filesystem activity appears limited to creating/reading local reports and templates.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install pipl-compliance
  3. After installation, invoke the skill by name or use /pipl-compliance
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.1.8
- Added SECURITY_CHECK_GUIDE.md to provide users with security check guidance and best practices. - Introduced scripts/security_check_enhanced.py for enhanced security verification in the compliance workflow.
v1.1.7
pipl-compliance 1.1.7 - Added an important legal disclaimer section at the beginning of documentation, clarifying that the skill does not provide legal advice, has accuracy limits, and outlining user responsibilities and limits of liability. - Expanded and clarified usage restrictions, allowed and prohibited scenarios, and emphasized the need for professional consultation in complex or sensitive cases. - Updated "快速开始" (Quick Start) guidance to address limitations of Python module imports with hyphenated filenames, including alternative solutions using subprocess and command-line examples. - No changes detected in code files; all updates are documentation-only.
v1.1.6
- 修正了导入示例,增加了脚本命名和导入方式的使用说明,避免因文件命名差异导致的导入错误。 - “文档生成”相关描述由“实时法规更新提示”调整为“定期更新包机制”,更准确反映文档和规则的更新方式。 - “灵活的检查引擎”和“专业文档生成”相关技术说明补充“定期规则更新包”“定期法规内容更新包”表述,强调自动化升级机制。 - 路线图中“实时法规更新”描述调整为“完善定期更新机制”,信息更准确。 - 其它内容、核心功能和整体结构维持一致,无功能性变更。
v1.1.5
**pipl-compliance 1.1.5 Changelog** - Major update: Enhanced modularity and usability by restructuring script files and removing obsolete documents. - Added new scripts for compliance management and utilities: - `scripts/compliance-manager.py` - Utility modules: `data_validator.py`, `report_formatter.py`, `template_engine.py` (under `scripts/utils/`) - Added initial test documentation (`tests/README.md`). - Removed deprecated scripts and design/experience markdown docs to streamline project structure. - Updated documentation to reflect new module layout and improved feature set.
v1.1.4
No changes detected in this release. - Version 1.1.4 has no modifications from the previous version. - All core features, documentation, and scripts remain unchanged.
v1.1.3
pipl-compliance v1.1.3 - 新增脚本:integrate-docs.py,用于文档集成相关任务 - 新增脚本:verify-fixes.py,用于校验修复项 - 增强了脚本工具的可扩展性 - 保持核心本地合规检查、文档生成及风险评估功能不变
v1.1.2
- 现在为纯本地工具,不再需要任何API密钥或环境变量,所有功能均在本地执行。 - 移除了对PIPL_API_KEY环境变量的需求,metadata配置已同步更新。 - 新增更详细的安全与隐私说明,明确数据仅在本地处理,不会访问外部网络。 - 文档新增关于无网络请求、文件权限及依赖安全的说明,提升用户信心和合规透明度。 - 其它核心功能和用法保持不变,兼容性未变。
v1.1.1
- No changes in this version; documentation and code remain the same as the previous release.
v1.1.0
**Major update with expanded features, richer documentation, and improved usability:** - Added comprehensive user and developer documentation, including usage guides, CLI design, improvements, and best practices. - Significantly expanded script coverage with new tools for testing, packaging, demos, integration, reporting, and security checks. - Enhanced references and templates: new enforcement cases, checklists, and document guides added. - Updated and reorganized compliance document templates (privacy policy, consent forms, agreements). - Improved configuration, integration, troubleshooting, and output documentation in SKILL.md. - Removed deprecated or outdated files for a cleaner structure.
v1.0.6
- Removed the file scripts/security_check.py. - Added a new "安全验证" (security verification) section in SKILL.md, recommending users manually check scripts for network access and dangerous operations. - No changes to core features or usage instructions.
v1.0.5
pipl-compliance 1.0.5 - Added new Chinese templates and references: consent form, privacy policy, data processing agreement, and compliance checklist. - Introduced SECURITY_INFO.md outlining security practices and usage notes. - Migrated/renamed script: replaced scripts/security-check.py with scripts/security_check.py. - Expanded documentation assets under assets/ directory for easier reference. - Improved overall modularity and clarity of supporting materials.
v1.0.4
- 移除了不再维护的辅助脚本和多份文档模板,仅保留主合规工具(pipl-check.py、risk-assessment.py、document-generator.py)及法规摘要。 - 增加了安全信息和功能范围说明,强调本Skill仅限检查与报告生成、不处理真实数据、不做系统修改。 - 精简/更新了文档内容,突出核心功能和使用方法,删除多余模板和冗长使用说明。 - 明确依赖与操作安全,列举了用于验证代码无网络/危险操作的方法。 - 文件结构更简洁,重点聚焦核心检查、评估和文档生成功能。
v1.0.3
- 增加三份中文合规文档模板:隐私政策、用户同意书、数据处理协议。 - 新增简化版合规检查、风险评估、文档生成脚本,提升普适易用性。 - 在文档和命令行用法中增补“简化版”(simple.py)与“完整版”功能区分说明。 - 核心合规功能和脚本用法未做变动,保持与原有完整版兼容。 - 更适合快速合规自查与标准文档输出,适配更多PIPL基础应用场景。
v1.0.2
- 增加了安全相关文件 SECURITY_REVIEW.md 和 SECURITY_STATEMENT.md,提升Skill的安全透明度。 - 新增脚本 scripts/pipl-check-full.py,补充了PIPL合规检查工具的完整功能。 - 文档中更新了常用命令,新增对完整版合规检查脚本的说明。 - 其他功能和核心模块未做调整,版本号维持为 1.0.2。
v1.0.1
- 新增文档模板存放目录:assets/ 和示例文件 assets/README.md - 新增风险评估脚本:scripts/risk-assessment.py - 新增文档生成脚本:scripts/document-generator.py - 未修改或移除现有文件,向Skill添加了实用扩展工具
v1.0.0
pipl-compliance 1.0.0 — Initial release - Provides compliance tools specifically for China’s Personal Information Protection Law (PIPL). - Includes regulatory digest, compliance check scripts, risk assessment, and document templates (privacy policies, consent forms, data processing agreements). - Offers clear usage scenarios, step-by-step workflow, and practical command-line examples. - Features update guidance, monitoring of regulatory changes, and best practices. - Detailed documentation with FAQs, user responsibilities, and future development roadmap. - Designed for businesses handling personal data in China; does not cover non-China jurisdictions.
Metadata
Slug pipl-compliance
Version 1.1.8
License MIT-0
All-time Installs 0
Active Installs 0
Total Versions 16
Frequently Asked Questions

What is PIPL-Compliance(PIPL合规工具)?

中国个人信息保护法(PIPL)合规检查、风险评估和文档生成工具。为企业提供全面的PIPL合规解决方案。Use when: 需要进行PIPL合规自查、个人信息处理风险评估、合规文档生成、企业合规管理。触发关键词:PIPL、个人信息保护法、合规检查、风险评估、隐私合规、数据保护. It is an AI Agent Skill for Claude Code / OpenClaw, with 240 downloads so far.

How do I install PIPL-Compliance(PIPL合规工具)?

Run "/install pipl-compliance" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is PIPL-Compliance(PIPL合规工具) free?

Yes, PIPL-Compliance(PIPL合规工具) is completely free, licensed under MIT-0. You can download, install and use it at no cost.

Which platforms does PIPL-Compliance(PIPL合规工具) support?

PIPL-Compliance(PIPL合规工具) is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created PIPL-Compliance(PIPL合规工具)?

It is built and maintained by Wei Wu (@wwumit); the current version is v1.1.8.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463556 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259610 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200551 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191226 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190235 · by oswalpalash

💬 Comments