{"skill":{"slug":"vendor-risk-brief","displayName":"Vendor Risk Brief","summary":"对外部 SaaS/API 形成风险摘要，聚焦集成影响、权限、数据流向和替代方案。；use for vendor-risk, saas, security workflows；do not use for 冒充安全认证结论, 替代正式法务/安全审批.","tags":{"latest":"1.0.0"},"stats":{"comments":0,"downloads":131,"installsAllTime":0,"installsCurrent":0,"stars":0,"versions":1},"createdAt":1774231977879,"updatedAt":1774233121593},"latestVersion":{"version":"1.0.0","createdAt":1774231977879,"changelog":"Initial release of vendor-risk-brief skill:\n\n- Generates risk summaries for external SaaS/API integrations, focusing on integration impact, permissions, data flows, and alternatives.\n- Designed for use in vendor-risk, SaaS, and security workflows.\n- Outputs include supplier summary, permissions & data flow, main risks, mitigations, alternatives, and recommendation.\n- Clearly states information gaps and operational boundaries; not a substitute for formal legal/security approval.\n- Supports review drafts and executable checklists; provides structure for localized templates and specs.\n- Emphasizes auditability and risk boundaries.","license":"MIT-0"},"metadata":{"os":["darwin","linux","win32"],"systems":null},"owner":{"handle":"52yuanchangxing","userId":"s178sqjkywrs4vbnfcrr7wx7f583gef5","displayName":"vx：17605205782","image":"https://avatars.githubusercontent.com/u/39086567?v=4"},"moderation":null}