{ "schemaVersion": "1.0", "item": { "slug": "afrexai-ai-safety-audit", "name": "AI Safety Audit", "source": "tencent", "type": "skill", "category": "安全合规", "sourceUrl": "https://clawhub.ai/1kalin/afrexai-ai-safety-audit", "canonicalUrl": "https://clawhub.ai/1kalin/afrexai-ai-safety-audit", "targetPlatform": "OpenClaw" }, "install": { "downloadMode": "redirect", "downloadUrl": "/downloads/afrexai-ai-safety-audit", "sourceDownloadUrl": "https://wry-manatee-359.convex.site/api/v1/download?slug=afrexai-ai-safety-audit", "sourcePlatform": "tencent", "targetPlatform": "OpenClaw", "installMethod": "Manual import", "extraction": "Extract archive", "prerequisites": [ "OpenClaw" ], "packageFormat": "ZIP package", "includedAssets": [ "README.md", "SKILL.md" ], "primaryDoc": "SKILL.md", "quickSetup": [ "Download the package from Yavira.", "Extract the archive and review SKILL.md first.", "Import or place the package into your OpenClaw setup." ], "agentAssist": { "summary": "Hand the extracted package to your coding agent with a concrete install brief instead of figuring it out manually.", "steps": [ "Download the package from Yavira.", "Extract it into a folder your agent can access.", "Paste one of the prompts below and point your agent at the extracted folder." ], "prompts": [ { "label": "New install", "body": "I downloaded a skill package from Yavira. Read SKILL.md from the extracted folder and install it by following the included instructions. Then review README.md for any prerequisites, environment setup, or post-install checks. Tell me what you changed and call out any manual steps you could not complete." }, { "label": "Upgrade existing", "body": "I downloaded an updated skill package from Yavira. Read SKILL.md from the extracted folder, compare it with my current installation, and upgrade it while preserving any custom configuration unless the package docs explicitly say otherwise. Then review README.md for any prerequisites, environment setup, or post-install checks. Summarize what changed and any follow-up checks I should run." } ] }, "sourceHealth": { "source": "tencent", "slug": "afrexai-ai-safety-audit", "status": "healthy", "reason": "direct_download_ok", "recommendedAction": "download", "checkedAt": "2026-04-22T08:30:48.291Z", "expiresAt": "2026-04-29T08:30:48.291Z", "httpStatus": 200, "finalUrl": "https://wry-manatee-359.convex.site/api/v1/download?slug=afrexai-ai-safety-audit", "contentType": "application/zip", "probeMethod": "head", "details": { "probeUrl": "https://wry-manatee-359.convex.site/api/v1/download?slug=afrexai-ai-safety-audit", "contentDisposition": "attachment; filename=\"afrexai-ai-safety-audit-1.0.0.zip\"", "redirectLocation": null, "bodySnippet": null, "slug": "afrexai-ai-safety-audit" }, "scope": "item", "summary": "Item download looks usable.", "detail": "Yavira can redirect you to the upstream package for this item.", "primaryActionLabel": "Download for OpenClaw", "primaryActionHref": "/downloads/afrexai-ai-safety-audit" }, "validation": { "installChecklist": [ "Use the Yavira download entry.", "Review SKILL.md after the package is downloaded.", "Confirm the extracted package contains the expected setup assets." ], "postInstallChecks": [ "Confirm the extracted package includes the expected docs or setup files.", "Validate the skill or prompts are available in your target agent workspace.", "Capture any manual follow-up steps the agent could not complete." ] }, "downloadPageUrl": "https://openagent3.xyz/downloads/afrexai-ai-safety-audit", "agentPageUrl": "https://openagent3.xyz/skills/afrexai-ai-safety-audit/agent", "manifestUrl": "https://openagent3.xyz/skills/afrexai-ai-safety-audit/agent.json", "briefUrl": "https://openagent3.xyz/skills/afrexai-ai-safety-audit/agent.md" }, "agentAssist": { "summary": "Hand the extracted package to your coding agent with a concrete install brief instead of figuring it out manually.", "steps": [ "Download the package from Yavira.", "Extract it into a folder your agent can access.", "Paste one of the prompts below and point your agent at the extracted folder." ], "prompts": [ { "label": "New install", "body": "I downloaded a skill package from Yavira. Read SKILL.md from the extracted folder and install it by following the included instructions. Then review README.md for any prerequisites, environment setup, or post-install checks. Tell me what you changed and call out any manual steps you could not complete." }, { "label": "Upgrade existing", "body": "I downloaded an updated skill package from Yavira. Read SKILL.md from the extracted folder, compare it with my current installation, and upgrade it while preserving any custom configuration unless the package docs explicitly say otherwise. Then review README.md for any prerequisites, environment setup, or post-install checks. Summarize what changed and any follow-up checks I should run." } ] }, "documentation": { "source": "clawhub", "primaryDoc": "SKILL.md", "sections": [ { "title": "AI Safety Audit", "body": "Comprehensive AI safety and alignment audit framework for businesses deploying AI agents. Built around the UK AI Security Institute Alignment Project standards (2026), EU AI Act requirements, and NIST AI RMF." }, { "title": "What This Skill Does", "body": "When activated, the agent performs a structured safety audit of your AI deployment:\n\nAI System Inventory — Catalogs all AI models, agents, and automated decision systems in use\nRisk Classification — Maps each system to EU AI Act risk tiers (Unacceptable/High/Limited/Minimal)\nSafety Controls Assessment — Evaluates 30 controls across 6 domains\nGap Analysis — Identifies missing safeguards with severity and remediation cost\nCompliance Roadmap — Generates a prioritized 90-day action plan" }, { "title": "1. Model Governance (5 controls)", "body": "Model registry with version tracking\nAccess control and deployment permissions\nUpdate and rollback procedures\nVendor risk assessment for third-party models\nModel retirement and data deletion policy" }, { "title": "2. Data Protection (5 controls)", "body": "Data residency and sovereignty mapping\nPII detection and handling in AI pipelines\nTraining data provenance documentation\nData retention aligned with AI lifecycle\nCross-border data transfer compliance" }, { "title": "3. Output Safety (5 controls)", "body": "Hallucination detection and mitigation\nBias testing across protected characteristics\nContent filtering for harmful outputs\nConfidence scoring and uncertainty flagging\nHuman-in-the-loop for high-stakes decisions" }, { "title": "4. Security (5 controls)", "body": "Prompt injection defense\nModel extraction prevention\nAPI rate limiting and abuse detection\nAdversarial input testing\nSupply chain security for AI dependencies" }, { "title": "5. Monitoring & Observability (5 controls)", "body": "Real-time output quality tracking\nDrift detection (data and model)\nIncident logging and alerting\nPerformance degradation monitoring\nCost tracking per AI workflow" }, { "title": "6. Organizational Readiness (5 controls)", "body": "Named AI safety officer\nStaff training program with completion tracking\nBoard-level AI risk reporting\nIncident response playbook\nThird-party audit schedule" }, { "title": "Scoring", "body": "Each control scores 0-3:\n\n0 — Not implemented\n1 — Partially implemented, no documentation\n2 — Implemented with documentation\n3 — Implemented, documented, tested, and audited\n\nTotal: 90 points max\n\n0-30: Critical risk — stop deploying until gaps are addressed\n31-55: High risk — remediate within 30 days\n56-75: Moderate risk — address within 90 days\n76-90: Strong posture — maintain and iterate" }, { "title": "Regulatory Mapping", "body": "FrameworkStatusKey RequirementsEU AI ActEnforcing 2026Risk classification, conformity assessment, transparencyUK AI Safety InstituteActive 2026Alignment testing, frontier model evaluationNIST AI RMFPublishedGovern, Map, Measure, Manage lifecycleISO 42001PublishedAI management system certificationSOC 2 + AIEmergingAgent-specific controls (CC6/CC7/CC8)" }, { "title": "Cost Benchmarks", "body": "Company SizeFull Audit CostAnnual ComplianceNon-Compliance Risk15-50 employees$8K – $20K$18K – $45K$200K+50-200 employees$20K – $55K$45K – $120K$500K – $2M200-1000 employees$55K – $150K$120K – $400K$2M – $10M" }, { "title": "Output Format", "body": "The agent delivers:\n\nExecutive Summary — Overall score, top 3 risks, recommended actions\nDetailed Scorecard — All 30 controls with scores and evidence\nGap Analysis — Missing controls ranked by risk severity\n90-Day Roadmap — Phased remediation plan with cost estimates\nBoard Report Template — One-page summary for leadership" }, { "title": "Industry Adjustments", "body": "The audit adjusts control weighting based on industry:\n\nHealthcare: Output safety and data protection weighted 2x\nFinancial Services: Model governance and monitoring weighted 2x\nLegal: Output safety (hallucination) weighted 3x\nManufacturing: Security and monitoring weighted 2x\nGovernment/Defense: All domains weighted equally at maximum" }, { "title": "Go Deeper", "body": "AI Revenue Leak Calculator — Quantify what safety gaps cost your business\nIndustry Context Packs ($47) — Pre-built compliance frameworks for your specific vertical\nAgent Setup Wizard — Deploy agents with safety controls from day one" }, { "title": "Bundles", "body": "AI Playbook — $27\nPick 3 Industries — $97\nAll 10 Industries — $197\nEverything Bundle — $247" } ], "body": "AI Safety Audit\n\nComprehensive AI safety and alignment audit framework for businesses deploying AI agents. Built around the UK AI Security Institute Alignment Project standards (2026), EU AI Act requirements, and NIST AI RMF.\n\nWhat This Skill Does\n\nWhen activated, the agent performs a structured safety audit of your AI deployment:\n\nAI System Inventory — Catalogs all AI models, agents, and automated decision systems in use\nRisk Classification — Maps each system to EU AI Act risk tiers (Unacceptable/High/Limited/Minimal)\nSafety Controls Assessment — Evaluates 30 controls across 6 domains\nGap Analysis — Identifies missing safeguards with severity and remediation cost\nCompliance Roadmap — Generates a prioritized 90-day action plan\n6 Audit Domains (30 Controls)\n1. Model Governance (5 controls)\nModel registry with version tracking\nAccess control and deployment permissions\nUpdate and rollback procedures\nVendor risk assessment for third-party models\nModel retirement and data deletion policy\n2. Data Protection (5 controls)\nData residency and sovereignty mapping\nPII detection and handling in AI pipelines\nTraining data provenance documentation\nData retention aligned with AI lifecycle\nCross-border data transfer compliance\n3. Output Safety (5 controls)\nHallucination detection and mitigation\nBias testing across protected characteristics\nContent filtering for harmful outputs\nConfidence scoring and uncertainty flagging\nHuman-in-the-loop for high-stakes decisions\n4. Security (5 controls)\nPrompt injection defense\nModel extraction prevention\nAPI rate limiting and abuse detection\nAdversarial input testing\nSupply chain security for AI dependencies\n5. Monitoring & Observability (5 controls)\nReal-time output quality tracking\nDrift detection (data and model)\nIncident logging and alerting\nPerformance degradation monitoring\nCost tracking per AI workflow\n6. Organizational Readiness (5 controls)\nNamed AI safety officer\nStaff training program with completion tracking\nBoard-level AI risk reporting\nIncident response playbook\nThird-party audit schedule\nScoring\n\nEach control scores 0-3:\n\n0 — Not implemented\n1 — Partially implemented, no documentation\n2 — Implemented with documentation\n3 — Implemented, documented, tested, and audited\n\nTotal: 90 points max\n\n0-30: Critical risk — stop deploying until gaps are addressed\n31-55: High risk — remediate within 30 days\n56-75: Moderate risk — address within 90 days\n76-90: Strong posture — maintain and iterate\nRegulatory Mapping\nFramework\tStatus\tKey Requirements\nEU AI Act\tEnforcing 2026\tRisk classification, conformity assessment, transparency\nUK AI Safety Institute\tActive 2026\tAlignment testing, frontier model evaluation\nNIST AI RMF\tPublished\tGovern, Map, Measure, Manage lifecycle\nISO 42001\tPublished\tAI management system certification\nSOC 2 + AI\tEmerging\tAgent-specific controls (CC6/CC7/CC8)\nCost Benchmarks\nCompany Size\tFull Audit Cost\tAnnual Compliance\tNon-Compliance Risk\n15-50 employees\t$8K – $20K\t$18K – $45K\t$200K+\n50-200 employees\t$20K – $55K\t$45K – $120K\t$500K – $2M\n200-1000 employees\t$55K – $150K\t$120K – $400K\t$2M – $10M\nOutput Format\n\nThe agent delivers:\n\nExecutive Summary — Overall score, top 3 risks, recommended actions\nDetailed Scorecard — All 30 controls with scores and evidence\nGap Analysis — Missing controls ranked by risk severity\n90-Day Roadmap — Phased remediation plan with cost estimates\nBoard Report Template — One-page summary for leadership\nIndustry Adjustments\n\nThe audit adjusts control weighting based on industry:\n\nHealthcare: Output safety and data protection weighted 2x\nFinancial Services: Model governance and monitoring weighted 2x\nLegal: Output safety (hallucination) weighted 3x\nManufacturing: Security and monitoring weighted 2x\nGovernment/Defense: All domains weighted equally at maximum\nGo Deeper\nAI Revenue Leak Calculator — Quantify what safety gaps cost your business\nIndustry Context Packs ($47) — Pre-built compliance frameworks for your specific vertical\nAgent Setup Wizard — Deploy agents with safety controls from day one\nBundles\nAI Playbook — $27\nPick 3 Industries — $97\nAll 10 Industries — $197\nEverything Bundle — $247" }, "trust": { "sourceLabel": "tencent", "provenanceUrl": "https://clawhub.ai/1kalin/afrexai-ai-safety-audit", "publisherUrl": "https://clawhub.ai/1kalin/afrexai-ai-safety-audit", "owner": "1kalin", "version": "1.0.0", "license": null, "verificationStatus": "Indexed source record" }, "links": { "detailUrl": "https://openagent3.xyz/skills/afrexai-ai-safety-audit", "downloadUrl": "https://openagent3.xyz/downloads/afrexai-ai-safety-audit", "agentUrl": "https://openagent3.xyz/skills/afrexai-ai-safety-audit/agent", "manifestUrl": "https://openagent3.xyz/skills/afrexai-ai-safety-audit/agent.json", "briefUrl": "https://openagent3.xyz/skills/afrexai-ai-safety-audit/agent.md" } }