ClawHub

Risk Assessment Framework

v1.0.0

Performs detailed risk assessment by identifying, scoring, prioritizing risks, and proposing mitigation plans with owners, deadlines, and costs for informed...

0· 999·3 current·3 all-time
by@1kalin
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
The name/description (risk assessment, scoring, mitigation, register) matches the SKILL.md instructions. The skill is instruction-only and does not request unrelated binaries, env vars, or platform access.
Instruction Scope
The SKILL.md stays on-task (identifying risks, scoring, producing a register and heat map). It suggests pairing with external industry context packs (links to afrexai-cto.github.io) — that is a reasonable suggestion for richer inputs but means the agent may reference or recommend paid external resources. The instructions do not direct the agent to read system files, environment variables, or transmit data to unknown endpoints.
Install Mechanism
No install spec and no code files are present, so nothing will be written to disk or downloaded during installation. Low risk from install mechanism.
Credentials
The skill declares no required environment variables, credentials, or config paths. Its functionality (analysis of user-provided project/business context) does not require secrets or external credentials.
Persistence & Privilege
always is false and there is no install-time persistence. The skill can be invoked autonomously by the agent (default platform behavior) but it does not request elevated or cross-skill privileges.
Assessment
This skill appears coherent and contains only instructions for performing risk assessments. Before installing or using it: 1) Do not paste secrets, credentials, or sensitive PII into prompts — the skill operates on whatever you provide. 2) Verify any external context packs or paid links (afrexai-cto.github.io) before following payment or install instructions; those are third-party resources and not required to use the core skill. 3) Treat the generated mitigation owners, deadlines, and cost estimates as starting points — have a human expert validate them before acting. 4) If you plan to let agents run autonomously and feed project data, enforce internal policies about what data may be supplied to skills. If you want deeper assurance, request the skill author/source provenance (homepage or repository) before trusting it in regulated workflows.

Like a lobster shell, security has layers — review code before you run it.

assessmentvk97azkmddth0stk3ecmy04rk918159sqbusinessvk97azkmddth0stk3ecmy04rk918159sqcompliancevk97azkmddth0stk3ecmy04rk918159sqgovernancevk97azkmddth0stk3ecmy04rk918159sqlatestvk97azkmddth0stk3ecmy04rk918159sqriskvk97azkmddth0stk3ecmy04rk918159sq
999downloads
0stars
1versions
Updated 1mo ago
v1.0.0
MIT-0
@1kalin
assessmentbusinesscompliancegovernancelatestrisk
Download

Risk Assessment Framework

Comprehensive risk assessment for business operations, projects, and strategic decisions. Identifies, scores, and prioritizes risks with mitigation plans.

What It Does

When triggered, the agent:

  1. Identifies risks across categories (operational, financial, technical, regulatory, reputational, strategic)
  2. Scores each risk using Likelihood × Impact matrix (1-5 scale, 25-point max)
  3. Classifies into Critical (20-25), High (15-19), Medium (8-14), Low (1-7)
  4. Generates mitigation strategies with owners, deadlines, and cost estimates
  5. Produces a risk register ready for board reporting or investor updates

Usage

Tell your agent: "Run a risk assessment on [project/business/decision]"

Input

Provide context about what you're assessing:

  • Business or project description
  • Known concerns or past incidents
  • Industry and regulatory environment
  • Timeline and budget constraints

Output Format

Risk Register:

#RiskCategoryLIScorePriorityMitigationOwnerDeadlineCost

Risk Heat Map:

  • 🔴 Critical (20-25): Immediate action required
  • 🟠 High (15-19): Mitigation plan within 7 days
  • 🟡 Medium (8-14): Monitor and review monthly
  • 🟢 Low (1-7): Accept or monitor quarterly

Residual Risk: After mitigation, re-score to show risk reduction.

Scoring Guide

Likelihood (L):

  1. Rare (<5%) — Hasn't happened, unlikely to
  2. Unlikely (5-20%) — Could happen but no history
  3. Possible (20-50%) — Has happened elsewhere
  4. Likely (50-80%) — Has happened before or conditions exist
  5. Almost Certain (>80%) — Expected to happen

Impact (I):

  1. Negligible — <$10K loss, no disruption
  2. Minor — $10K-$50K, minor delays
  3. Moderate — $50K-$250K, partial service disruption
  4. Major — $250K-$1M, significant operational impact
  5. Severe — >$1M, existential threat or regulatory action

Industries Covered

  • SaaS & Technology
  • Financial Services
  • Healthcare & Life Sciences
  • Construction & Engineering
  • Professional Services
  • Manufacturing
  • Real Estate
  • Legal & Compliance

Want More?

This skill pairs well with industry-specific AI context packs that include pre-built risk libraries, compliance checklists, and regulatory frameworks:

Browse context packs: https://afrexai-cto.github.io/context-packs/Calculate your AI ROI: https://afrexai-cto.github.io/ai-revenue-calculator/Set up your AI agent: https://afrexai-cto.github.io/agent-setup/

Comments

Loading comments...