Compliance Audit Generator
by @1kalin
Generates detailed compliance audits with risk-prioritized findings and remediation plans for frameworks like SOC 2, ISO 27001, GDPR, HIPAA, and PCI DSS.
clawhub install afrexai-compliance-auditπ About This Skill
Compliance Audit Generator
Run internal compliance audits against major frameworks without hiring a consultant.
What It Does
Generates a structured compliance audit for your organization against any of these frameworks:
How to Use
Tell the agent which framework you need audited. Provide context about your organization:
Example Prompts
Output Format
The agent produces:
1. Executive Summary
2. Control-by-Control Assessment
For each control domain:3. Remediation Roadmap
4. Evidence Checklist
Agent Instructions
When the user requests a compliance audit:
1. Ask which framework(s) they need assessed 2. Gather context about their organization (industry, size, tech stack, data types) 3. Generate the full audit report following the output format above 4. For each control area, be specific β don't give generic advice. Reference the actual control numbers (e.g., SOC 2 CC6.1, ISO 27001 A.8.2) 5. Prioritize findings by business risk, not alphabetical order 6. Include cost estimates where possible (e.g., "penetration test: $5,000-$15,000") 7. Flag any controls that require third-party tools or services
Be direct. No filler. Every finding should have a clear "do this" action attached.