ai agent governance audit
Audit agentic systems against runtime controls and generate compliance artifacts for ISO 42001 and NIST AI RMF.
$49
· or 245 creditsSecure checkout via Stripe
Works with the AI tools you already use
About this skill
The problem
Most AI governance is just a policy binder that ignores how agents actually behave. When an agent holds API keys, makes purchases, or deletes data, a "system prompt" is not a security control, and an unproven kill switch is a liability.
What it does
- Audits deployed agents against seven critical runtime controls, including containment, permission scope, and blast radius.
- Differentiates between PASS, FAIL, and UNVERIFIED status based on evidence rather than architectural claims.
- Identifies "decorative" human oversight where approval fatigue renders the human-in-the-loop ineffective.
- Produces audit-ready findings mapped to ISO 42001, NIST AI RMF, and OWASP Agentic AI Top Ten.
- Generates interview scripts and demonstration lists to force teams to prove their safety claims.
Why this beats prompting it yourself
General LLMs treat system prompts as enforcement and often hallucinate framework control IDs. This skill enforces a "test, don't trust" logic that prioritizes exploitability and runtime reality over paperwork, ensuring you don't submit fabricated citations to a real auditor.
Use cases
- Pre-deployment security reviews for agents with write-access to production databases or financial tools.
- Post-incident reconstruction to determine how and why an agent performed an unintended action.
- Preparing evidence and artifacts for ISO 42001 certification or NIST framework compliance.
- Validating that multi-agent systems have sufficient circuit breakers to prevent cascading failures.
Known limitations
This is not a certification or attestation. It does not cover ML model bias or fairness auditing. It requires manual input of architectural details or interview responses to function.
Details
How to install
Drop the file into your AI Agent. Works with Claude, Cursor, ChatGPT, and 20+ more.
Reviews
No reviews yet - be the first to share your experience.
Only users who have downloaded or purchased this skill can leave a review.
Be the first to review this skill.
Only users who have downloaded or purchased this skill can leave a review.
Security Scanned
Passed automated security review
Permissions
No special permissions declared or detected
Creator
Frequently Asked Questions
Browse More Skills

prompt-engineer
Professional prompt engineering patterns for building robust, secure, and production-ready LLM applications.
designing-hybrid-context-layers
Architects the right retrieval strategy for every query — teaching your agent when to use RAG, a knowledge graph, or a temporal index instead of defaulting to vector search for everything.
Bounty Security Pattern Master Library — 399 Vulnerability Patterns
A premium library of 399 vulnerability patterns and DeFi attack vectors for AI-driven bug hunting and security audits.
synthesizing-institutional-knowledge
Builds the organizational memory schema your AI agent needs to answer why — capturing decision provenance, causal chains, and event context that embedding-based retrieval permanently discards.